DBus-GLib vulnerability

2013-02-27T00:00:00
ID USN-1753-1
Type ubuntu
Reporter Ubuntu
Modified 2013-02-27T00:00:00

Description

Sebastian Krahmer and Bastien Nocera discovered that DBus-GLib did not properly validate the message sender when the “NameOwnerChanged” signal was received. A local attacker could possibly use this issue to escalate their privileges.