MidnightBSD

Advisories for d-bus_project

CVE-2010-4352 LOW

Stack consumption vulnerability in D-Bus (aka DBus) before 1.4.1 allows local users to cause a denial of service (daemon crash) via a message containing many nested variants.

CVSS 2.0

Severity: LOW

Problem Type: CWE-399,

Products Affected

Vendor Product Version
d-bus_project d-bus *
CVE-2011-2200 MEDIUM

The _dbus_header_byteswap function in dbus-marshal-header.c in D-Bus (aka DBus) 1.2.x before 1.2.28, 1.4.x before 1.4.12, and 1.5.x before 1.5.4 does not properly handle a non-native byte order, which allows local users to cause a denial of service (connection loss), obtain potentially sensitive information, or conduct unspecified state-modification attacks via crafted messages.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
d-bus_project d-bus 1.2.4.4
freedesktop dbus 1.4.4
freedesktop dbus 1.2.26
freedesktop dbus 1.2.16
freedesktop dbus 1.2.1
freedesktop dbus 1.2.14
freedesktop dbus 1.2.22
freedesktop dbus 1.2.2
freedesktop dbus 1.4.6
freedesktop dbus 1.4.1
d-bus_project d-bus 1.2.4.2
freedesktop dbus 1.2.24
freedesktop dbus 1.2.3
freedesktop dbus 1.2.8
freedesktop dbus 1.2.18
freedesktop dbus 1.4.10
freedesktop dbus 1.2.6
freedesktop dbus 1.4.8
freedesktop dbus 1.5.2
freedesktop dbus 1.2.20
freedesktop dbus 1.2.10
freedesktop dbus 1.5.0
freedesktop dbus 1.2.4
freedesktop dbus 1.4.0
freedesktop dbus 1.2.12
d-bus_project d-bus 1.2.4.6
CVE-2014-3477 LOW

The dbus-daemon in D-Bus 1.2.x through 1.4.x, 1.6.x before 1.6.20, and 1.8.x before 1.8.4, sends an AccessDenied error to the service instead of a client when the client is prohibited from accessing the service, which allows local users to cause a denial of service (initialization failure and exit) or possibly conduct a side-channel attack via a D-Bus message to an inactive service.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
d-bus_project d-bus 1.2.4.4
freedesktop dbus 1.4.4
freedesktop dbus 1.2.26
freedesktop dbus 1.6.8
freedesktop dbus 1.4.26
freedesktop dbus 1.2.16
freedesktop dbus 1.2.1
freedesktop dbus 1.2.14
freedesktop dbus 1.6.2
freedesktop dbus 1.6.10
freedesktop dbus 1.3.0
freedesktop dbus 1.2.22
freedesktop dbus 1.8.2
freedesktop dbus 1.6.12
freedesktop dbus 1.4.22
freedesktop dbus 1.6.4
freedesktop dbus 1.4.6
freedesktop dbus 1.6.16
freedesktop dbus 1.4.1
d-bus_project d-bus 1.2.4.2
freedesktop dbus 1.2.24
freedesktop dbus 1.2.3
freedesktop dbus 1.2.8
freedesktop dbus 1.2.18
freedesktop dbus 1.4.10
freedesktop dbus 1.2.6
freedesktop dbus 1.4.8
freedesktop dbus 1.6.18
freedesktop dbus 1.4.14
freedesktop dbus 1.4.20
freedesktop dbus 1.4.24
freedesktop dbus 1.2.20
freedesktop dbus 1.8.0
freedesktop dbus 1.2.10
freedesktop dbus 1.6.0
freedesktop dbus 1.6.14
freedesktop dbus 1.6.6
freedesktop dbus 1.4.18
freedesktop dbus 1.2.30
freedesktop dbus 1.4.12
freedesktop dbus 1.2.4
freedesktop dbus 1.3.1
freedesktop dbus 1.4.0
freedesktop dbus 1.2.12
d-bus_project d-bus 1.2.4.6
freedesktop dbus 1.4.16
freedesktop dbus 1.2.28
CVE-2014-3635 MEDIUM

Off-by-one error in D-Bus 1.3.0 through 1.6.x before 1.6.24 and 1.8.x before 1.8.8, when running on a 64-bit system and the max_message_unix_fds limit is set to an odd number, allows local users to cause a denial of service (dbus-daemon crash) or possibly execute arbitrary code by sending one more file descriptor than the limit, which triggers a heap-based buffer overflow or an assertion failure.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
freedesktop dbus 1.6.8
freedesktop dbus 1.8.4
freedesktop dbus 1.6.20
freedesktop dbus 1.6.18
freedesktop dbus 1.6.2
freedesktop dbus 1.6.10
freedesktop dbus 1.8.2
freedesktop dbus 1.8.0
freedesktop dbus 1.6.0
freedesktop dbus 1.6.12
freedesktop dbus 1.6.14
freedesktop dbus 1.6.6
freedesktop dbus 1.8.6
freedesktop dbus 1.6.4
freedesktop dbus 1.6.16
opensuse opensuse 12.3
d-bus_project d-bus *
CVE-2014-3636 LOW

D-Bus 1.3.0 through 1.6.x before 1.6.24 and 1.8.x before 1.8.8 allows local users to (1) cause a denial of service (prevention of new connections and connection drop) by queuing the maximum number of file descriptors or (2) cause a denial of service (disconnect) via multiple messages that combine to have more than the allowed number of file descriptors for a single sendmsg call.

CVSS 2.0

Severity: LOW

Problem Type: CWE-399,

Products Affected

Vendor Product Version
freedesktop dbus 1.8.6
freedesktop dbus 1.8.4
opensuse opensuse 12.3
freedesktop dbus 1.8.2
d-bus_project d-bus *
freedesktop dbus 1.8.0
CVE-2014-3638 LOW

The bus_connections_check_reply function in config-parser.c in D-Bus before 1.6.24 and 1.8.x before 1.8.8 allows local users to cause a denial of service (CPU consumption) via a large number of method calls.

CVSS 2.0

Severity: LOW

Problem Type: CWE-399,

Products Affected

Vendor Product Version
freedesktop dbus 1.6.8
freedesktop dbus 1.8.4
freedesktop dbus 1.6.20
freedesktop dbus 1.6.18
freedesktop dbus 1.6.2
freedesktop dbus 1.6.10
freedesktop dbus 1.8.2
freedesktop dbus 1.8.0
freedesktop dbus 1.6.0
freedesktop dbus 1.6.12
freedesktop dbus 1.6.14
freedesktop dbus 1.6.6
freedesktop dbus 1.8.6
freedesktop dbus 1.6.4
freedesktop dbus 1.6.16
opensuse opensuse 12.3
d-bus_project d-bus *
CVE-2014-3639 LOW

The dbus-daemon in D-Bus before 1.6.24 and 1.8.x before 1.8.8 does not properly close old connections, which allows local users to cause a denial of service (incomplete connection consumption and prevention of new connections) via a large number of incomplete connections.

CVSS 2.0

Severity: LOW

Problem Type: CWE-399,

Products Affected

Vendor Product Version
freedesktop dbus 1.6.8
freedesktop dbus 1.8.4
freedesktop dbus 1.6.20
freedesktop dbus 1.6.18
freedesktop dbus 1.6.2
freedesktop dbus 1.6.10
freedesktop dbus 1.8.2
freedesktop dbus 1.8.0
freedesktop dbus 1.6.0
freedesktop dbus 1.6.12
freedesktop dbus 1.6.14
freedesktop dbus 1.6.6
freedesktop dbus 1.8.6
freedesktop dbus 1.6.4
freedesktop dbus 1.6.16
opensuse opensuse 12.3
d-bus_project d-bus *
CVE-2022-42010

An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. An authenticated attacker can cause dbus-daemon and other programs that use libdbus to crash when receiving a message with certain invalid type signatures.

Products Affected

Vendor Product Version
fedoraproject fedora 36
fedoraproject fedora 37
freedesktop dbus *
fedoraproject fedora 35
d-bus_project d-bus *
CVE-2022-42011

An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. An authenticated attacker can cause dbus-daemon and other programs that use libdbus to crash when receiving a message where an array length is inconsistent with the size of the element type.

Products Affected

Vendor Product Version
fedoraproject fedora 36
fedoraproject fedora 37
freedesktop dbus *
fedoraproject fedora 35
d-bus_project d-bus *
CVE-2022-42012

An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. An authenticated attacker can cause dbus-daemon and other programs that use libdbus to crash by sending a message with attached file descriptors in an unexpected format.

Products Affected

Vendor Product Version
fedoraproject fedora 36
fedoraproject fedora 37
freedesktop dbus *
fedoraproject fedora 35
d-bus_project d-bus *