Veracode Vulnerability DatabaseVERACODE:23567Denial Of Service (DoS)
0.011 Low
EPSS
Percentile
84.7%
dbus is vulnerable to denial of service (DoS). The vulnerability exists as a denial-of-service flaw was discovered in the system for sending messages between applications. A local user could send a message with a malformed signature to the bus causing the bus (and, consequently, any process using libdbus to receive messages) to abort.
| CPE | Name | Operator | Version |
|---|---|---|---|
| dbus | eq | 1.0.0__6.3.el5_1 | |
| dbus | eq | 1.0.0__6.el5 | |
| dbus | eq | 1.0.0__6.3.el5_1 | |
| dbus | eq | 1.0.0__6.el5 |
References
kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
lists.opensuse.org/opensuse-security-announce/2008-12/msg00002.html
lists.opensuse.org/opensuse-updates/2012-10/msg00094.html
secunia.com/advisories/32127
secunia.com/advisories/32230
secunia.com/advisories/32281
secunia.com/advisories/32385
secunia.com/advisories/33396
www.debian.org/security/2008/dsa-1658
www.freedesktop.org/wiki/Software/dbus#head-dad0dab297a44f1d7a3b1259cfc06b583fd6a88a
www.mandriva.com/security/advisories?name=MDVSA-2008:213
www.redhat.com/security/updates/classification/#moderate
www.redhat.com/support/errata/RHSA-2009-0008.html
www.securityfocus.com/bid/31602
www.securitytracker.com/id?1021063
www.ubuntu.com/usn/usn-653-1
www.vupen.com/english/advisories/2008/2762
access.redhat.com/errata/RHSA-2009:0008
bugs.freedesktop.org/show_bug.cgi?id=17803
bugzilla.redhat.com/show_bug.cgi?id=CVE-2008-3834
exchange.xforce.ibmcloud.com/vulnerabilities/45701
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10253
www.exploit-db.com/exploits/7822
www.redhat.com/archives/fedora-package-announce/2008-October/msg00298.html
Related
