FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

dbus -- local dos

Affected packages
dbus < 1.6.12

Details

VuXML ID 4e9e410b-d462-11e2-8d57-080027019be0
Discovery 2013-06-13
Entry 2013-06-13

Simon McVittie reports:

Alexandru Cornea discovered a vulnerability in libdbus caused by an implementation bug in _dbus_printf_string_upper_bound(). This vulnerability can be exploited by a local user to crash system services that use libdbus, causing denial of service. It is platform-specific: x86-64 Linux is known to be affected.

References

CVE Name CVE-2013-2168
URL http://lists.freedesktop.org/archives/dbus/2013-June/015696.html