Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-2149-1:8A000
HistoryJan 20, 2011 - 4:06 p.m.

[SECURITY] [DSA 2149-1] Security update for dbus

2011-01-2016:06:34
lists.debian.org
10

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

6.3 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

10.1%

JSON

Debian Security Advisory DSA-2149-1 [email protected]
http://www.debian.org/security/ Nico Golde
January 20, 2011 http://www.debian.org/security/faq

Package : dbus
Vulnerability : denial of service
Problem type : local
Debian-specific: no
Debian bug : none
CVE ID : CVE-2010-4352

Rémi Denis-Courmont discovered that dbus, a message bus application,
is not properly limiting the nesting level when examining messages with
extensive nested variants. This allows an attacker to crash the dbus system
daemon due to a call stack overflow via crafted messages.

For the stable distribution (lenny), this problem has been fixed in
version 1.2.1-5+lenny2.

For the testing distribution (squeeze), this problem has been fixed in
version 1.2.24-4.

For the unstable distribution (sid), this problem has been fixed in
version 1.2.24-4.

We recommend that you upgrade your dbus packages.

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian5sparclibdbus-1-3< 1.2.1-5+lenny2libdbus-1-3_1.2.1-5+lenny2_sparc.deb
Debian5armlibdbus-1-3< 1.2.1-5+lenny2libdbus-1-3_1.2.1-5+lenny2_arm.deb
Debian5amd64libdbus-1-3< 1.2.1-5+lenny2libdbus-1-3_1.2.1-5+lenny2_amd64.deb
Debian5ia64libdbus-1-3< 1.2.1-5+lenny2libdbus-1-3_1.2.1-5+lenny2_ia64.deb
Debian5powerpclibdbus-1-dev< 1.2.1-5+lenny2libdbus-1-dev_1.2.1-5+lenny2_powerpc.deb
Debian5amd64libdbus-1-dev< 1.2.1-5+lenny2libdbus-1-dev_1.2.1-5+lenny2_amd64.deb
Debian5armdbus< 1.2.1-5+lenny2dbus_1.2.1-5+lenny2_arm.deb
Debian5s390dbus-x11< 1.2.1-5+lenny2dbus-x11_1.2.1-5+lenny2_s390.deb
Debian5alphalibdbus-1-dev< 1.2.1-5+lenny2libdbus-1-dev_1.2.1-5+lenny2_alpha.deb
Debian5sparcdbus< 1.2.1-5+lenny2dbus_1.2.1-5+lenny2_sparc.deb
Rows per page:
1-10 of 501

Related

nessus 17
openvas 20
centos 1
veracode 1
securityvulns 3
prion 1
fedora 3
cve 1
osv 1
debiancve 1
ubuntu 1
nvd 1
ubuntucve 1
oraclelinux 2
cvelist 1
redhat 2
gentoo 1
nessus
nessus
RHEL 5 / 6 : dbus (RHSA-2011:0376)
2011-03-23 00:00:00
Debian DSA-2149-1 : dbus - denial of service
2011-01-21 00:00:00
Fedora 13 : dbus-1.2.24-2.fc13 (2010-19178)
2011-04-13 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2011-0376)
2015-10-06 00:00:00
RedHat Update for dbus RHSA-2011:0376-01
2011-03-25 00:00:00
Fedora Update for dbus FEDORA-2010-19166
2010-12-28 00:00:00
centos
centos
dbus security update
2011-04-14 23:47:56
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:00:25
securityvulns
securityvulns
[USN-1044-1] D-Bus vulnerability
2011-01-19 00:00:00
D-Bus DoS
2011-01-19 00:00:00
[ GLSA 201110-14 ] D-Bus: Multiple vulnerabilities
2011-10-26 00:00:00
prion
prion
Stack overflow
2010-12-30 19:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: dbus-1.2.24-2.fc13
2011-04-12 21:30:00
[SECURITY] Fedora 14 Update: dbus-1.4.0-2.fc14
2010-12-25 00:27:38
[SECURITY] Fedora 14 Update: dbus-1.4.0-3.fc14
2011-08-13 02:28:01
cve
cve
CVE-2010-4352
2010-12-30 19:00:05
osv
osv
dbus - denial of service
2011-01-20 00:00:00
debiancve
debiancve
CVE-2010-4352
2010-12-30 19:00:05
ubuntu
ubuntu
D-Bus vulnerability
2011-01-18 00:00:00
nvd
nvd
CVE-2010-4352
2010-12-30 19:00:05
ubuntucve
ubuntucve
CVE-2010-4352
2010-12-30 00:00:00
oraclelinux
oraclelinux
dbus security update
2011-03-22 00:00:00
dbus security update
2011-08-09 00:00:00
cvelist
cvelist
CVE-2010-4352
2010-12-30 18:00:00
redhat
redhat
(RHSA-2011:0376) Moderate: dbus security update
2011-03-22 00:00:00
(RHSA-2011:0439) Moderate: rhev-hypervisor security and bug fix update
2011-04-13 00:00:00
gentoo
gentoo
D-Bus: Multiple vulnerabilities
2011-10-21 00:00:00

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

6.3 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

10.1%

JSON
Related for DEBIAN:DSA-2149-1:8A000
nessus17openvas20centos1veracode1securityvulns3prion1fedora3cve1osv1debiancve1ubuntu1nvd1ubuntucve1oraclelinux2cvelist1redhat2gentoo1