Lucene search
Alpine Linux Development TeamALPINE:CVE-2022-42011HistoryOct 10, 2022 - 12:15 a.m.
CVE-2022-42011
2022-10-1000:15:09
Alpine Linux Development Team
security.alpinelinux.org
584
d-bus vulnerability
authenticated attacker
crash
array length
libdbus
unix
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
7
Confidence
High
EPSS
0.002
Percentile
56.6%
An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. An authenticated attacker can cause dbus-daemon and other programs that use libdbus to crash when receiving a message where an array length is inconsistent with the size of the element type.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-main | noarch | dbus | < 1.14.4-r0 | UNKNOWN |
| Alpine | 3.13-main | noarch | dbus | < 1.12.24-r0 | UNKNOWN |
| Alpine | 3.14-main | noarch | dbus | < 1.12.24-r0 | UNKNOWN |
| Alpine | 3.15-main | noarch | dbus | < 1.12.24-r0 | UNKNOWN |
| Alpine | 3.16-main | noarch | dbus | < 1.14.4-r0 | UNKNOWN |
| Alpine | 3.17-main | noarch | dbus | < 1.14.4-r0 | UNKNOWN |
| Alpine | 3.18-main | noarch | dbus | < 1.14.4-r0 | UNKNOWN |
| Alpine | 3.19-main | noarch | dbus | < 1.14.4-r0 | UNKNOWN |
| Alpine | 3.20-main | noarch | dbus | < 1.14.4-r0 | UNKNOWN |
Related
osv
osv
CVE-2022-42011
2022-10-10 00:15:09
CGA-wrqx-vwjf-prg3
2024-06-06 12:29:50
Moderate: dbus security update
2023-01-23 00:00:00
cbl_mariner
cbl_mariner
CVE-2022-42011 affecting package dbus 1.13.6-5
2023-02-14 02:35:58
CVE-2022-42011 affecting package dbus for versions less than 1.15.2-2
2022-11-03 20:37:47
veracode
veracode
Denial Of Service (DoS)
2022-10-06 17:05:58
redhatcve
redhatcve
CVE-2022-42011
2022-10-13 14:29:29
cvelist
cvelist
CVE-2022-42011
2022-10-09 00:00:00
ubuntucve
ubuntucve
CVE-2022-42011
2022-10-10 00:00:00
prion
prion
Design/Logic Flaw
2022-10-10 00:15:00
cve
cve
CVE-2022-42011
2022-10-10 00:15:09
debiancve
debiancve
CVE-2022-42011
2022-10-10 00:15:09
ibm
ibm
Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in Freedesktop D-Bus (CVE-2022-42011)
2023-03-31 17:53:12
nvd
nvd
CVE-2022-42011
2022-10-10 00:15:09
nessus
nessus
Debian DLA-3142-1 : dbus - LTS security update
2022-10-10 00:00:00
EulerOS Virtualization 2.9.0 : dbus (EulerOS-SA-2023-1655)
2023-04-27 00:00:00
CentOS 8 : dbus (CESA-2023:0096)
2024-02-08 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3142-1)
2022-10-11 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:3804-1)
2022-10-28 00:00:00
Huawei EulerOS: Security Advisory for dbus (EulerOS-SA-2023-2034)
2023-06-07 00:00:00
amazon
amazon
Medium: dbus
2023-04-13 19:01:00
Medium: dbus
2023-03-30 18:56:00
rocky
rocky
dbus security update
2023-01-12 08:25:26
dbus security update
2023-01-23 14:30:24
debian
debian
[SECURITY] [DSA 5250-1] dbus security update
2022-10-06 18:51:40
[SECURITY] [DLA 3142-1] dbus security update
2022-10-10 14:47:14
redos
redos
ROS-20221013-01
2022-10-13 00:00:00
gentoo
gentoo
D-Bus: Multiple Vulnerabilities
2023-05-03 00:00:00
cloudfoundry
cloudfoundry
USN-5704-1: DBus vulnerabilities | Cloud Foundry
2022-12-07 00:00:00
redhat
redhat
(RHSA-2022:8977) Moderate: dbus security update
2022-12-13 15:31:11
(RHSA-2022:8812) Moderate: dbus security update
2022-12-06 09:24:57
(RHSA-2023:0335) Moderate: dbus security update
2023-01-23 14:30:24
suse
suse
Security update for dbus-1 (important)
2022-10-27 00:00:00
Security update for dbus-1 (important)
2022-10-27 00:00:00
ubuntu
ubuntu
DBus vulnerabilities
2022-10-27 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: dbus-1.14.4-1.fc37
2022-11-10 22:40:24
[SECURITY] Fedora 35 Update: dbus-1.12.24-1.fc35
2022-10-26 17:35:19
[SECURITY] Fedora 36 Update: dbus-1.14.4-1.fc36
2022-10-14 13:03:28
oraclelinux
oraclelinux
dbus security update
2023-01-24 00:00:00
dbus security update
2023-01-12 00:00:00
mageia
mageia
Updated dbus packages fix security vulnerability
2022-10-08 23:22:22
photon
photon
Moderate Photon OS Security Update - PHSA-2022-0263
2022-10-14 00:00:00
Moderate Photon OS Security Update - PHSA-2022-4.0-0263
2022-10-14 00:00:00
Critical Photon OS Security Update - PHSA-2022-3.0-0470
2022-10-16 00:00:00
almalinux
almalinux
Moderate: dbus security update
2023-01-23 00:00:00
Moderate: dbus security update
2023-01-12 00:00:00
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
7
Confidence
High
EPSS
0.002
Percentile
56.6%
Related for ALPINE:CVE-2022-42011