Lucene search
GoogleOSV:DLA-87-1HistoryNov 20, 2014 - 12:00 a.m.
dbus - security update
2014-11-2000:00:00
Google
osv.dev
11
0.0004 Low
EPSS
Percentile
10.2%
This updates fixes multiple (local) denial of services discovered by Alban
Crequy and Simon McVittie.
- CVE-2014-3477
Fix a denial of service (failure to obtain bus name) in
newly-activated system services that not all users are allowed to
access. - CVE-2014-3638
Reduce maximum number of pending replies per connection to avoid
algorithmic complexity denial of service. - CVE-2014-3639
The daemon now limits the number of unauthenticated connection slots
so that malicious processes cannot prevent new connections to the
system bus.
For Debian 6 Squeeze, these issues have been fixed in dbus version 1.2.24-4+squeeze3
| CPE | Name | Operator | Version |
|---|---|---|---|
| dbus | eq | 1.2.24-4 | |
| dbus | eq | 1.2.24-4+squeeze1 | |
| dbus | eq | 1.2.24-4+squeeze2 |
References
Related
openvas
openvas
Debian: Security Advisory (DLA-87-1)
2023-03-08 00:00:00
SUSE: Security Advisory for dbus-1 (SUSE-SU-2014:1146-1)
2015-10-13 00:00:00
SUSE: Security Advisory (SUSE-SU-2014:1146-1)
2021-06-09 00:00:00
debian
debian
[SECURITY] [DLA 87-1] dbus security update
2014-11-20 13:28:44
[SECURITY] [DSA 3026-1] dbus security update
2014-09-16 18:34:09
[SECURITY] [DSA 2971-1] dbus security update
2014-07-02 18:40:42
nessus
nessus
Debian DLA-87-1 : dbus security update
2015-03-26 00:00:00
SuSE 11.3 Security Update : dbus-1 (SAT Patch Number 9733)
2014-09-19 00:00:00
F5 Networks BIG-IP : D-Bus vulnerability (SOL17256)
2015-09-15 00:00:00
ibm
ibm
suse
suse
Security update for dbus-1 (important)
2014-09-19 23:04:49
debiancve
debiancve
cvelist
cvelist
f5
f5
K17256 : D-Bus vulnerability CVE-2014-3638
2015-09-14 00:00:00
SOL17255 - D-Bus vulnerability CVE-2014-3477
2015-09-11 00:00:00
K17255 : D-Bus vulnerability CVE-2014-3477
2015-09-11 00:00:00
mageia
mageia
Updated dbus packages fix security vulnerability
2014-06-18 23:25:42
Updated dbus packages fix multiple security vulnerabilities
2014-10-07 13:22:51
cve
cve
prion
prion
Design/Logic Flaw
2014-07-01 17:55:00
Design/Logic Flaw
2014-09-22 15:55:00
Design/Logic Flaw
2014-09-22 15:55:00
fedora
fedora
[SECURITY] Fedora 20 Update: mingw-dbus-1.6.28-1.fc20
2015-01-02 05:04:52
[SECURITY] Fedora 20 Update: dbus-1.6.28-1.fc20
2014-12-13 09:47:30
[SECURITY] Fedora 21 Update: mingw-dbus-1.8.12-1.fc21
2015-01-02 05:03:51
ubuntucve
ubuntucve
freebsd
freebsd
dbus -- local DoS
2014-06-10 00:00:00
dbus -- multiple vulnerabilities
2014-09-16 00:00:00
nvd
nvd
ubuntu
ubuntu
DBus vulnerabilities
2014-09-22 00:00:00
DBus vulnerabilities
2014-07-08 00:00:00
gentoo
gentoo
D-Bus: Multiple Vulnerabilities
2014-12-13 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 3026-1] dbus security update
2014-09-21 00:00:00
dbus multiple security vulnerabilities
2014-11-30 00:00:00
ESA-2015-002: Unisphere Central Security Update for Multiple Vulnerabilities
2015-02-02 00:00:00
osv
osv
dbus - security update
2014-09-16 00:00:00
dbus - security update
2014-07-02 00:00:00