Lucene search
Gentoo FoundationGLSA-201503-02HistoryMar 07, 2015 - 12:00 a.m.
D-Bus: Denial of service
2015-03-0700:00:00
Gentoo Foundation
security.gentoo.org
16
1.9 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:N/I:N/A:P
0.0004 Low
EPSS
Percentile
5.1%
Background
D-Bus is a message bus system, a simple way for applications to talk to one another.
Description
D-Bus doesn’t validate the source of ActivationFailure signals.
Impact
A local attacker could possibly cause a Denial of Service condition.
Workaround
There is no known workaround at this time.
Resolution
All D-Bus users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=sys-apps/dbus-1.8.16"
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Gentoo | any | all | sys-apps/dbus | < 1.8.16 | UNKNOWN |
Related
nessus
nessus
GLSA-201503-02 : D-Bus: Denial of Service
2015-03-09 00:00:00
Debian DSA-3161-1 : dbus - security update
2015-02-12 00:00:00
Ubuntu 14.04 LTS / 16.04 LTS : DBus vulnerabilities (USN-3116-1)
2016-11-02 00:00:00
mageia
mageia
Updated dbus packages fix security vulnerabilities
2015-02-17 21:38:13
archlinux
archlinux
dbus: denial of service
2015-02-10 00:00:00
xorg-server: information leak and denial of service
2015-02-10 00:00:00
nvd
nvd
CVE-2015-0245
2015-02-13 15:59:08
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0071)
2022-01-28 00:00:00
Debian: Security Advisory (DSA-3161-1)
2015-02-10 00:00:00
Ubuntu: Security Advisory (USN-3116-1)
2016-11-08 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 3161-1] dbus security update
2015-02-16 00:00:00
dbus DoS
2015-02-16 00:00:00
ubuntu
ubuntu
DBus vulnerabilities
2016-11-01 00:00:00
cvelist
cvelist
CVE-2015-0245
2015-02-13 15:00:00
gentoo
gentoo
D-Bus: Format string vulnerability
2017-01-11 00:00:00
osv
osv
dbus - security update
2015-02-11 00:00:00
prion
prion
Race condition
2015-02-13 15:59:00
cloudfoundry
cloudfoundry
USN-3116-1: DBus vulnerabilities | Cloud Foundry
2016-12-14 00:00:00
ubuntucve
ubuntucve
CVE-2015-0245
2015-02-13 00:00:00
debiancve
debiancve
CVE-2015-0245
2015-02-13 15:59:08
cve
cve
CVE-2015-0245
2015-02-13 15:59:08
altlinux
altlinux
Security fix for the ALT Linux 7 package dbus version 1.6.30-alt1.M70P.1
2016-10-11 00:00:00
debian
debian
[SECURITY] [DSA 3161-1] dbus security update
2015-02-11 20:39:05
[SECURITY] [DSA 3161-1] dbus security update
2015-02-11 20:39:05
photon
photon
fedora
fedora
[SECURITY] Fedora 21 Update: dbus-1.8.16-1.fc21
2015-02-16 03:26:31
[SECURITY] Fedora 20 Update: dbus-1.6.30-1.fc20
2015-02-19 18:01:40
suse
suse
Security update for SLES 12-SP1 Docker image (important)
2017-10-11 03:07:32
Security update for SLES 12 Docker image (important)
2017-10-11 03:06:53
1.9 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:N/I:N/A:P
0.0004 Low
EPSS
Percentile
5.1%
Related for GLSA-201503-02