2.1

CVE-2014-3638

The bus_connections_check_reply function in config-parser.c in D-Bus before 1.6.24 and 1.8.x before 1.8.8 allows local users to cause a denial of service (CPU consumption) via a large number of method calls.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
D-bus ProjectD-bus Version <= 1.6.22
FreedesktopDbus Version1.6.0
FreedesktopDbus Version1.6.2
FreedesktopDbus Version1.6.4
FreedesktopDbus Version1.6.6
FreedesktopDbus Version1.6.8
FreedesktopDbus Version1.6.10
FreedesktopDbus Version1.6.12
FreedesktopDbus Version1.6.14
FreedesktopDbus Version1.6.16
FreedesktopDbus Version1.6.18
FreedesktopDbus Version1.6.20
FreedesktopDbus Version1.8.0
FreedesktopDbus Version1.8.2
FreedesktopDbus Version1.8.4
FreedesktopDbus Version1.8.6
OpensuseOpensuse Version12.3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.39% 0.304
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.opensuse.org/opensuse-updates/2014-09/msg00049.html
http://www.mandriva.com/security/advisories?name=MDVSA-2015:176
http://advisories.mageia.org/MGASA-2014-0395.html
http://secunia.com/advisories/61378
http://www.debian.org/security/2014/dsa-3026
http://www.openwall.com/lists/oss-security/2014/09/16/9
http://www.securitytracker.com/id/1030864
http://www.ubuntu.com/usn/USN-2352-1
http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00026.html
http://secunia.com/advisories/61431
https://bugs.freedesktop.org/show_bug.cgi?id=81053
Patch