MiracleLinux 3 : dbus-glib-0.73-11.AXS3 (AXSA:2013-125:01)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2013-125:01 advisory. D-Bus add-on library to integrate the standard D-Bus library with the GLib thread abstraction and main loop. Security issues fixed with this release:...

MiracleLinux 4 : dbus-glib-0.86-6.AXS4 (AXSA:2013-165:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2013-165:01 advisory. D-Bus add-on library to integrate the standard D-Bus library with the GLib thread abstraction and main loop. Security issues fixed with this release:...

EUVD-2013-0313

Malware in sbrugna...

Local Privilege Escalation

libdbus-glib-1.so is vulnerable to local privilege escalation attacks. The vulnerability exists due to the improper filtering of the message sender value when the NameOwnerChanged signal is received, allowing privilege escalation attacks...

Local Privilege Escalation

libdbus-glib-1.so is vulnerable to local privilege escalation attacks. The vulnerability exists due to the improper filtering of the message sender value when the NameOwnerChanged signal is received, allowing privilege escalation attacks...

CVE-2013-0292

The dbusgproxymanagerfilter function in dbus-gproxy in Dbus-glib before 0.100.1 does not properly verify the sender of NameOwnerChanged signals, which allows local users to gain privileges via a spoofed signal...

CVE-2013-0292

The dbusgproxymanagerfilter function in dbus-gproxy in Dbus-glib before 0.100.1 does not properly verify the sender of NameOwnerChanged signals, which allows local users to gain privileges via a spoofed signal...

CVE-2013-0292

The dbusgproxymanagerfilter function in dbus-gproxy in Dbus-glib before 0.100.1 does not properly verify the sender of NameOwnerChanged signals, which allows local users to gain privileges via a spoofed signal...

Ubuntu 10.04 LTS / 11.10 / 12.04 LTS / 12.10 : dbus-glib vulnerability (USN-1753-1)

Sebastian Krahmer and Bastien Nocera discovered that DBus-GLib did not properly validate the message sender when the 'NameOwnerChanged' signal was received. A local attacker could possibly use this issue to escalate their privileges. Note that Tenable Network Security has extracted the preceding...

dbus-glib: Local privilege escalation due improper filtering of message sender when NameOwnerChanged signal received

The dbusgproxymanagerfilter function in dbus-gproxy in Dbus-glib before 0.100.1 does not properly verify the sender of NameOwnerChanged signals, which allows local users to gain privileges via a spoofed signal...

dbus-glib -- privledge escalation

Sebastian Krahmer reports: A privilege escalation flaw was found in the way dbus-glib, the D-Bus add-on library to integrate the standard D-Bus library with the GLib thread abstraction and main loop, performed filtering of the message sender message source subject, when the NameOwnerChanged signa...