Information on source package dbus

Available versions

ReleaseVersion
wheezy (security)1.6.8-1+deb7u6
jessie1.8.22-0+deb8u1
stretch1.10.22-0+deb9u1
buster1.11.20-1
sid1.11.20-1

Open issues

BugwheezyjessiestretchbustersidDescription
TEMP-0000000-4DA0A8vulnerable (no DSA)fixedfixedfixedfixeddbus format string vulnerability

Resolved issues

BugDescription
CVE-2015-0245D-Bus 1.4.x through 1.6.x before 1.6.30, 1.8.x before 1.8.16, and ...
CVE-2014-7824D-Bus 1.3.0 through 1.6.x before 1.6.26, 1.8.x before 1.8.10, and ...
CVE-2014-3639The dbus-daemon in D-Bus before 1.6.24 and 1.8.x before 1.8.8 does not ...
CVE-2014-3638The bus_connections_check_reply function in config-parser.c in D-Bus ...
CVE-2014-3637D-Bus 1.3.0 through 1.6.x before 1.6.24 and 1.8.x before 1.8.8 does ...
CVE-2014-3636D-Bus 1.3.0 through 1.6.x before 1.6.24 and 1.8.x before 1.8.8 allows ...
CVE-2014-3635Off-by-one error in D-Bus 1.3.0 through 1.6.x before 1.6.24 and 1.8.x ...
CVE-2014-3533dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6 allows local users to ...
CVE-2014-3532dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6, when running on Linux ...
CVE-2014-3477The dbus-daemon in D-Bus 1.2.x through 1.4.x, 1.6.x before 1.6.20, and ...
CVE-2013-2168The _dbus_printf_string_upper_bound function in ...
CVE-2012-3524libdbus 1.5.x and earlier, when used in setuid or other privileged ...
CVE-2011-2533The configure script in D-Bus (aka DBus) 1.2.x before 1.2.28 allows ...
CVE-2011-2200The _dbus_header_byteswap function in dbus-marshal-header.c in D-Bus ...
CVE-2010-4352Stack consumption vulnerability in D-Bus (aka DBus) before 1.4.1 ...
CVE-2009-1189The _dbus_validate_signature_with_reason function ...
CVE-2008-4311The default configuration of system.conf in D-Bus (aka DBus) before ...
CVE-2008-3834The dbus_signature_validate function in the D-bus library (libdbus) ...
CVE-2008-0595dbus-daemon in D-Bus before 1.0.3, and 1.1.x before 1.1.20, recognizes ...
CVE-2006-6107Unspecified vulnerability in the match_rule_equal function in ...
CVE-2005-0201D-BUS (dbus) before 0.22 does not properly restrict access to a ...

Security announcements

DSA / DLADescription
DSA-3161-1dbus - security update
DSA-3099-1dbus - security update
DLA-87-1dbus - security update
DSA-3026-1dbus - security update
DSA-2971-1dbus - security update
DSA-2707-1dbus - denial of service
DSA-2149-1dbus - denial of service
DSA-1837-1dbus - denial of service
DSA-1837-1dbus - denial of service
DSA-1658-1dbus - denial of service
DSA-1599-1dbus

Search for package or bug name: Reporting problems