Lucene search
GoogleOSV:DSA-3161-1HistoryFeb 11, 2015 - 12:00 a.m.
dbus - security update
2015-02-1100:00:00
Google
osv.dev
9
0.0004 Low
EPSS
Percentile
5.1%
Simon McVittie discovered a local denial of service flaw in dbus, an
asynchronous inter-process communication system. On systems with
systemd-style service activation, dbus-daemon does not prevent forged
ActivationFailure messages from non-root processes. A malicious local
user could use this flaw to trick dbus-daemon into thinking that systemd
failed to activate a system service, resulting in an error reply back to
the requester.
For the stable distribution (wheezy), this problem has been fixed in
version 1.6.8-1+deb7u6.
For the unstable distribution (sid), this problem has been fixed in
version 1.8.16-1.
We recommend that you upgrade your dbus packages.
| CPE | Name | Operator | Version |
|---|---|---|---|
| dbus | eq | 1.6.8-1 | |
| dbus | eq | 1.6.8-1+deb7u4 | |
| dbus | eq | 1.6.8-1+deb7u2 | |
| dbus | eq | 1.6.8-1+deb7u5 | |
| dbus | eq | 1.6.8-1+deb7u1 | |
| dbus | eq | 1.6.8-1+deb7u3 |
References
Related
nessus
nessus
GLSA-201503-02 : D-Bus: Denial of Service
2015-03-09 00:00:00
Debian DSA-3161-1 : dbus - security update
2015-02-12 00:00:00
Ubuntu 14.04 LTS / 16.04 LTS : DBus vulnerabilities (USN-3116-1)
2016-11-02 00:00:00
mageia
mageia
Updated dbus packages fix security vulnerabilities
2015-02-17 21:38:13
archlinux
archlinux
dbus: denial of service
2015-02-10 00:00:00
xorg-server: information leak and denial of service
2015-02-10 00:00:00
nvd
nvd
CVE-2015-0245
2015-02-13 15:59:08
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0071)
2022-01-28 00:00:00
Debian: Security Advisory (DSA-3161-1)
2015-02-10 00:00:00
Ubuntu: Security Advisory (USN-3116-1)
2016-11-08 00:00:00
securityvulns
securityvulns
dbus DoS
2015-02-16 00:00:00
[SECURITY] [DSA 3161-1] dbus security update
2015-02-16 00:00:00
ubuntu
ubuntu
DBus vulnerabilities
2016-11-01 00:00:00
cvelist
cvelist
CVE-2015-0245
2015-02-13 15:00:00
gentoo
gentoo
D-Bus: Format string vulnerability
2017-01-11 00:00:00
D-Bus: Denial of service
2015-03-07 00:00:00
prion
prion
Race condition
2015-02-13 15:59:00
cloudfoundry
cloudfoundry
USN-3116-1: DBus vulnerabilities | Cloud Foundry
2016-12-14 00:00:00
ubuntucve
ubuntucve
CVE-2015-0245
2015-02-13 00:00:00
debiancve
debiancve
CVE-2015-0245
2015-02-13 15:59:08
cve
cve
CVE-2015-0245
2015-02-13 15:59:08
altlinux
altlinux
Security fix for the ALT Linux 7 package dbus version 1.6.30-alt1.M70P.1
2016-10-11 00:00:00
debian
debian
[SECURITY] [DSA 3161-1] dbus security update
2015-02-11 20:39:05
[SECURITY] [DSA 3161-1] dbus security update
2015-02-11 20:39:05
photon
photon
fedora
fedora
[SECURITY] Fedora 21 Update: dbus-1.8.16-1.fc21
2015-02-16 03:26:31
[SECURITY] Fedora 20 Update: dbus-1.6.30-1.fc20
2015-02-19 18:01:40
suse
suse
Security update for SLES 12 Docker image (important)
2017-10-11 03:06:53
Security update for SLES 12-SP1 Docker image (important)
2017-10-11 03:07:32