Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2022:8977
HistoryDec 13, 2022 - 3:31 p.m.

(RHSA-2022:8977) Moderate: dbus security update

2022-12-1315:31:11
access.redhat.com
14
d-bus system messaging
security update
message handling

0.002 Low

EPSS

Percentile

56.7%

JSON

D-Bus is a system for sending messages between applications. It is used both for the system-wide message bus service, and as a per-user-login-session messaging facility.

Security Fix(es):

  • dbus: dbus-daemon crashes when receiving message with incorrectly nested parentheses and curly brackets (CVE-2022-42010)

  • dbus: dbus-daemon can be crashed by messages with array length inconsistent with element type (CVE-2022-42011)

  • dbus: _dbus_marshal_byteswap doesn’t process fds in messages with “foreign” endianness correctly (CVE-2022-42012)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHat9ppc64ledbus-debugsource< 1.12.20-5.el9_0.1dbus-debugsource-1.12.20-5.el9_0.1.ppc64le.rpm
RedHat9i686dbus-libs< 1.12.20-5.el9_0.1dbus-libs-1.12.20-5.el9_0.1.i686.rpm
RedHat9i686dbus-x11-debuginfo< 1.12.20-5.el9_0.1dbus-x11-debuginfo-1.12.20-5.el9_0.1.i686.rpm
RedHat9ppc64ledbus-tools-debuginfo< 1.12.20-5.el9_0.1dbus-tools-debuginfo-1.12.20-5.el9_0.1.ppc64le.rpm
RedHat9aarch64dbus-libs< 1.12.20-5.el9_0.1dbus-libs-1.12.20-5.el9_0.1.aarch64.rpm
RedHat9ppc64ledbus-x11-debuginfo< 1.12.20-5.el9_0.1dbus-x11-debuginfo-1.12.20-5.el9_0.1.ppc64le.rpm
RedHat9ppc64ledbus-x11< 1.12.20-5.el9_0.1dbus-x11-1.12.20-5.el9_0.1.ppc64le.rpm
RedHat9x86_64dbus-x11< 1.12.20-5.el9_0.1dbus-x11-1.12.20-5.el9_0.1.x86_64.rpm
RedHat9s390xdbus-tools-debuginfo< 1.12.20-5.el9_0.1dbus-tools-debuginfo-1.12.20-5.el9_0.1.s390x.rpm
RedHat9x86_64dbus-daemon< 1.12.20-5.el9_0.1dbus-daemon-1.12.20-5.el9_0.1.x86_64.rpm
Rows per page:
1-10 of 621

Related

nessus 45
osv 10
openvas 28
amazon 2
rocky 2
redos 1
debian 2
fedora 3
almalinux 2
suse 2
oraclelinux 2
ibm 10
cloudfoundry 1
gentoo 1
photon 3
mageia 1
redhat 24
ubuntu 1
cbl_mariner 6
redhatcve 3
nvd 3
ubuntucve 3
cvelist 3
prion 3
debiancve 3
cve 3
veracode 3
alpinelinux 3
nessus
nessus
EulerOS Virtualization 2.9.0 : dbus (EulerOS-SA-2023-1655)
2023-04-27 00:00:00
CentOS 8 : dbus (CESA-2023:0096)
2024-02-08 00:00:00
SUSE SLES12 Security Update : dbus-1 (SUSE-SU-2022:4295-1)
2022-11-30 00:00:00
osv
osv
Moderate: dbus security update
2023-01-23 00:00:00
Moderate: dbus security update
2023-01-12 08:25:26
dbus vulnerabilities
2022-10-27 13:00:09
openvas
openvas
Huawei EulerOS: Security Advisory for dbus (EulerOS-SA-2023-2034)
2023-06-07 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:3804-1)
2022-10-28 00:00:00
Debian: Security Advisory (DLA-3142-1)
2022-10-11 00:00:00
amazon
amazon
Medium: dbus
2023-04-13 19:01:00
Medium: dbus
2023-03-30 18:56:00
rocky
rocky
dbus security update
2023-01-12 08:25:26
dbus security update
2023-01-23 14:30:24
redos
redos
ROS-20221013-01
2022-10-13 00:00:00
debian
debian
[SECURITY] [DSA 5250-1] dbus security update
2022-10-06 18:51:40
[SECURITY] [DLA 3142-1] dbus security update
2022-10-10 14:47:14
fedora
fedora
[SECURITY] Fedora 35 Update: dbus-1.12.24-1.fc35
2022-10-26 17:35:19
[SECURITY] Fedora 36 Update: dbus-1.14.4-1.fc36
2022-10-14 13:03:28
[SECURITY] Fedora 37 Update: dbus-1.14.4-1.fc37
2022-11-10 22:40:24
almalinux
almalinux
Moderate: dbus security update
2023-01-23 00:00:00
Moderate: dbus security update
2023-01-12 00:00:00
suse
suse
Security update for dbus-1 (important)
2022-10-27 00:00:00
Security update for dbus-1 (important)
2022-10-27 00:00:00
oraclelinux
oraclelinux
dbus security update
2023-01-12 00:00:00
dbus security update
2023-01-24 00:00:00
ibm
ibm
Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to multiple Freedesktop D-Bus denial of service vulnerability
2023-07-06 17:04:39
Security Bulletin: Vulnerability in D-Bus (CVE-2022-42010, CVE-2022-42011 and CVE-2022-42012) affects Power HMC
2023-04-24 08:09:59
Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in Freedesktop D-Bus (CVE-2022-42012)
2023-03-31 17:54:23
cloudfoundry
cloudfoundry
USN-5704-1: DBus vulnerabilities | Cloud Foundry
2022-12-07 00:00:00
gentoo
gentoo
D-Bus: Multiple Vulnerabilities
2023-05-03 00:00:00
photon
photon
Moderate Photon OS Security Update - PHSA-2022-0263
2022-10-14 00:00:00
Moderate Photon OS Security Update - PHSA-2022-4.0-0263
2022-10-14 00:00:00
Critical Photon OS Security Update - PHSA-2022-3.0-0470
2022-10-16 00:00:00
mageia
mageia
Updated dbus packages fix security vulnerability
2022-10-08 23:22:22
redhat
redhat
(RHSA-2023:0096) Moderate: dbus security update
2023-01-12 08:25:26
(RHSA-2023:0335) Moderate: dbus security update
2023-01-23 14:30:24
(RHSA-2022:8812) Moderate: dbus security update
2022-12-06 09:24:57
ubuntu
ubuntu
DBus vulnerabilities
2022-10-27 00:00:00
cbl_mariner
cbl_mariner
CVE-2022-42012 affecting package dbus for versions less than 1.15.2-2
2022-11-03 20:37:47
CVE-2022-42011 affecting package dbus 1.13.6-5
2023-02-14 02:35:58
CVE-2022-42010 affecting package dbus for versions less than 1.15.2-2
2022-11-03 20:37:47
redhatcve
redhatcve
CVE-2022-42010
2022-10-13 14:29:22
CVE-2022-42012
2022-10-13 14:29:40
CVE-2022-42011
2022-10-13 14:29:29
nvd
nvd
CVE-2022-42010
2022-10-10 00:15:09
CVE-2022-42012
2022-10-10 00:15:09
CVE-2022-42011
2022-10-10 00:15:09
ubuntucve
ubuntucve
CVE-2022-42010
2022-10-10 00:00:00
CVE-2022-42012
2022-10-10 00:00:00
CVE-2022-42011
2022-10-10 00:00:00
cvelist
cvelist
CVE-2022-42010
2022-10-09 00:00:00
CVE-2022-42012
2022-10-09 00:00:00
CVE-2022-42011
2022-10-09 00:00:00
prion
prion
Design/Logic Flaw
2022-10-10 00:15:00
Format string
2022-10-10 00:15:00
Design/Logic Flaw
2022-10-10 00:15:00
debiancve
debiancve
CVE-2022-42010
2022-10-10 00:15:09
CVE-2022-42012
2022-10-10 00:15:09
CVE-2022-42011
2022-10-10 00:15:09
cve
cve
CVE-2022-42011
2022-10-10 00:15:09
CVE-2022-42010
2022-10-10 00:15:09
CVE-2022-42012
2022-10-10 00:15:09
veracode
veracode
Denial Of Service (DoS)
2022-10-06 17:07:08
Denial Of Service (DoS)
2022-10-06 17:06:28
Denial Of Service (DoS)
2022-10-06 17:05:58
alpinelinux
alpinelinux
CVE-2022-42010
2022-10-10 00:15:09
CVE-2022-42012
2022-10-10 00:15:09
CVE-2022-42011
2022-10-10 00:15:09

0.002 Low

EPSS

Percentile

56.7%

JSON
Related for RHSA-2022:8977
nessus45osv10openvas28amazon2rocky2redos1debian2fedora3almalinux2suse2oraclelinux2ibm10cloudfoundry1gentoo1photon3mageia1redhat24ubuntu1cbl_mariner6redhatcve3nvd3ubuntucve3cvelist3prion3debiancve3cve3veracode3alpinelinux3