GLSA
Advocate
Joined: 12 May 2004
Posts: 2663
|
 Posted: Sat Dec 13, 2014 3:26 pm Post subject: [ GLSA 201412-12 ] D-Bus: Multiple Vulnerabilities |
 |
|
Gentoo Linux Security Advisory
Title: D-Bus: Multiple Vulnerabilities (GLSA 201412-12)
Severity: normal
Exploitable: local
Date: December 13, 2014
Bug(s): #512940, #516080, #522982, #528900
ID: 201412-12
Synopsis
Multiple vulnerabilities have been found in D-Bus, possibly
resulting in local Denial of Service.
Background
D-Bus is a message bus system, a simple way for applications to talk to
one another.
Affected Packages
Package: sys-apps/dbus
Vulnerable: < 1.8.10
Unaffected: >= 1.8.10
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in D-Bus. Please review
the CVE identifiers referenced below for details.
Impact
A local attacker could possibly cause a Denial of Service condition.
Workaround
There is no known workaround at this time.
Resolution
All D-Bus users should upgrade to the latest version: | Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=sys-apps/dbus-1.8.10"
|
References
CVE-2014-3477
CVE-2014-3532
CVE-2014-3533
CVE-2014-3635
CVE-2014-3636
CVE-2014-3637
CVE-2014-3638
CVE-2014-3639
CVE-2014-7824 |
|
News & Announcements
