CVE-2010-4352

Related Files

Gentoo Linux Security Advisory 201110-14

Posted Oct 21, 2011

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201110-14 - Multiple vulnerabilities were found in D-Bus, the worst of which allowing for a symlink attack. Versions less than 1.4.12 are affected.

tags | advisory, vulnerability

systems | linux, gentoo

advisories | CVE-2010-4352, CVE-2011-2200, CVE-2011-2533

SHA-256 | 55b8075783df5c6f9b4afa7745043043619b3aca7b24e38ad62b9bcd97d97883

Download | Favorite | View

Debian Security Advisory 2149-1

Posted Jan 21, 2011

Authored by Debian | Site debian.org

Debian Linux Security Advisory 2149-1 - Remi Denis-Courmont discovered that dbus, a message bus application, is not properly limiting the nesting level when examining messages with extensive nested variants. This allows an attacker to crash the dbus system daemon due to a call stack overflow via crafted messages.

tags | advisory, overflow

systems | linux, debian

advisories | CVE-2010-4352

SHA-256 | 849b34b52e12a1ad5df3382c3dac8417ed09ccd34fb20acd6b36485d8669ddc7

Download | Favorite | View

Ubuntu Security Notice USN-1044-1

Posted Jan 18, 2011

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1044-1 - Remi Denis-Courmont discovered that D-Bus did not properly validate the number of nested variants when validating D-Bus messages. A local attacker could exploit this to cause a denial of service.

tags | advisory, denial of service, local

systems | linux, ubuntu

advisories | CVE-2010-4352

SHA-256 | f7aaad8ec30cabc9b11792ddb1646178a7873149dd060976c4db910a08ae15e4

Download | Favorite | View