Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-2275-1
HistoryJul 08, 2014 - 12:00 a.m.

DBus vulnerabilities

2014-07-0800:00:00
ubuntu.com
36

6.3 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

35.9%

JSON

Releases

  • Ubuntu 14.04 ESM
  • Ubuntu 13.10
  • Ubuntu 12.04

Packages

  • dbus - simple interprocess messaging system

Details

Alban Crequy discovered that dbus-daemon incorrectly sent AccessDenied
errors to the service instead of the client when enforcing permissions. A
local user can use this issue to possibly deny access to the service.
(CVE-2014-3477)

Alban Crequy discovered that dbus-daemon incorrectly handled certain file
descriptors. A local attacker could use this issue to cause services or
clients to disconnect, resulting in a denial of service. (CVE-2014-3532,
CVE-2014-3533)

OSVersionArchitecturePackageVersionFilename
Ubuntu14.04noarchdbus< 1.6.18-0ubuntu4.1UNKNOWN
Ubuntu14.04noarchdbus-1-dbg< 1.6.18-0ubuntu4.1UNKNOWN
Ubuntu14.04noarchdbus-x11< 1.6.18-0ubuntu4.1UNKNOWN
Ubuntu14.04noarchlibdbus-1-3< 1.6.18-0ubuntu4.1UNKNOWN
Ubuntu14.04noarchlibdbus-1-dev< 1.6.18-0ubuntu4.1UNKNOWN
Ubuntu13.10noarchdbus< 1.6.12-0ubuntu10.1UNKNOWN
Ubuntu13.10noarchdbus-1-dbg< 1.6.12-0ubuntu10.1UNKNOWN
Ubuntu13.10noarchdbus-x11< 1.6.12-0ubuntu10.1UNKNOWN
Ubuntu13.10noarchlibdbus-1-3< 1.6.12-0ubuntu10.1UNKNOWN
Ubuntu13.10noarchlibdbus-1-dev< 1.6.12-0ubuntu10.1UNKNOWN
Rows per page:
1-10 of 151

Related

nessus 19
osv 2
openvas 15
debian 3
fedora 6
freebsd 2
securityvulns 2
mageia 2
cvelist 3
prion 3
debiancve 3
ubuntucve 3
cve 3
gentoo 1
f5 2
ibm 2
nessus
nessus
Fedora 20 : dbus-1.6.12-9.fc20 (2014-8059)
2014-07-08 00:00:00
Debian DSA-2971-1 : dbus - security update
2014-07-03 00:00:00
Ubuntu 14.04 LTS : DBus vulnerabilities (USN-2275-1)
2014-07-09 00:00:00
osv
osv
dbus - security update
2014-07-02 00:00:00
dbus - security update
2014-11-20 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-2971-1)
2014-07-01 00:00:00
Ubuntu: Security Advisory (USN-2275-1)
2014-07-15 00:00:00
Debian Security Advisory DSA 2971-1 (dbus - security update)
2014-07-02 00:00:00
debian
debian
[SECURITY] [DSA 2971-1] dbus security update
2014-07-02 18:41:00
[SECURITY] [DSA 2971-1] dbus security update
2014-07-02 18:40:42
[SECURITY] [DLA 87-1] dbus security update
2014-11-20 13:28:55
fedora
fedora
[SECURITY] Fedora 20 Update: dbus-1.6.12-9.fc20
2014-07-08 01:04:40
[SECURITY] Fedora 20 Update: dbus-1.6.28-1.fc20
2014-12-13 09:47:30
[SECURITY] Fedora 20 Update: mingw-dbus-1.6.28-1.fc20
2015-01-02 05:04:52
freebsd
freebsd
dbus -- multiple vulnerabilities
2014-07-02 00:00:00
dbus -- local DoS
2014-06-10 00:00:00
securityvulns
securityvulns
[ MDVSA-2014:148 ] dbus
2014-08-04 00:00:00
dbus security vulnerabilities
2014-08-04 00:00:00
mageia
mageia
Updated dbus packages fix multiple vulnerabilities
2014-07-26 15:48:47
Updated dbus packages fix security vulnerability
2014-06-18 23:25:42
cvelist
cvelist
CVE-2014-3532
2014-07-19 19:00:00
CVE-2014-3533
2014-07-19 19:00:00
CVE-2014-3477
2014-07-01 17:00:00
prion
prion
Design/Logic Flaw
2014-07-19 19:55:00
Design/Logic Flaw
2014-07-19 19:55:00
Design/Logic Flaw
2014-07-01 17:55:00
debiancve
debiancve
CVE-2014-3532
2014-07-19 19:55:00
CVE-2014-3533
2014-07-19 19:55:00
CVE-2014-3477
2014-07-01 17:55:00
ubuntucve
ubuntucve
CVE-2014-3532
2014-07-02 00:00:00
CVE-2014-3533
2014-07-02 00:00:00
CVE-2014-3477
2014-07-01 00:00:00
cve
cve
CVE-2014-3532
2014-07-19 19:55:00
CVE-2014-3477
2014-07-01 17:55:00
CVE-2014-3533
2014-07-19 19:55:00
gentoo
gentoo
D-Bus: Multiple Vulnerabilities
2014-12-13 00:00:00
f5
f5
SOL17255 - D-Bus vulnerability CVE-2014-3477
2015-09-11 00:00:00
K17255 : D-Bus vulnerability CVE-2014-3477
2015-09-11 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in dbus affect the IBM Flex System Manager (FSM) (CVE-2014-3638, CVE-2014-3639, CVE-2014-3477)
2019-01-31 01:45:01
Security Bulletin: Network Intrusion Prevention System is affected by multiple D-BUS and PHP vulnerabilities (CVE-2014-3638, CVE-2014-3639, CVE-2014-3477, CVE-2014-5459, CVE-2014-3597, CVE-2014-4721)
2022-02-23 19:48:26

6.3 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

35.9%

JSON
Related for USN-2275-1
nessus19osv2openvas15debian3fedora6freebsd2securityvulns2mageia2cvelist3prion3debiancve3ubuntucve3cve3gentoo1f52ibm2