Back to search
CVE-2014-3532
Published: Jul 19, 2014
Modified: Aug 6, 2024
PUBLISHED
Description
dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6, when running on Linux 2.6.37-rc4 or later, allows local users to cause a denial of service (system-bus disconnect of other services or applications) by sending a message containing a file descriptor, then exceeding the maximum recursion depth before the initial message is forwarded.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
59798
third-party-advisory
x_refsource_SECUNIA
59611
third-party-advisory
x_refsource_SECUNIA
openSUSE-SU-2014:1239
vendor-advisory
x_refsource_SUSE
60236
third-party-advisory
x_refsource_SECUNIA
http://advisories.mageia.org/MGASA-2014-0294.html
x_refsource_CONFIRM
https://bugs.freedesktop.org/show_bug.cgi?id=80163
x_refsource_CONFIRM
DSA-2971
vendor-advisory
x_refsource_DEBIAN
[oss-security] 20140702 CVE-2014-3532, -3533: two local DoS vulnerabilities in dbus-daemon
mailing-list
x_refsource_MLIST
MDVSA-2015:176
vendor-advisory
x_refsource_MANDRIVA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now