Back to search
CVE-2014-7824
Published: Nov 18, 2014
Modified: Aug 6, 2024
PUBLISHED
Description
D-Bus 1.3.0 through 1.6.x before 1.6.26, 1.8.x before 1.8.10, and 1.9.x before 1.9.2 allows local users to cause a denial of service (prevention of new connections and connection drop) by queuing the maximum number of file descriptors. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-3636.1.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[oss-security] 20141110 CVE-2014-7824: D-Bus denial of service via incomplete fix for CVE-2014-3636
mailing-list
x_refsource_MLIST
62603
third-party-advisory
x_refsource_SECUNIA
http://advisories.mageia.org/MGASA-2014-0457.html
x_refsource_CONFIRM
https://bugs.freedesktop.org/show_bug.cgi?id=85105
x_refsource_CONFIRM
dbus-cve20147824-dos(98576)
vdb-entry
x_refsource_XF
71012
vdb-entry
x_refsource_BID
USN-2425-1
vendor-advisory
x_refsource_UBUNTU
DSA-3099
vendor-advisory
x_refsource_DEBIAN
MDVSA-2015:176
vendor-advisory
x_refsource_MANDRIVA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now