CVE-2014-3638

Priority
Medium
Description
The bus_connections_check_reply function in config-parser.c in D-Bus before
1.6.24 and 1.8.x before 1.8.8 allows local users to cause a denial of
service (CPU consumption) via a large number of method calls.
References
Bugs
Assigned-to
mdeslaur
Package
Source: dbus (LP Ubuntu Debian)
Upstream:released (1.6.24,1.8.8)
Ubuntu 12.04 LTS (Precise Pangolin):released (1.4.18-1ubuntu1.6)
Ubuntu 14.04 LTS (Trusty Tahr):released (1.6.18-0ubuntu4.2)
Patches:
Upstream:http://cgit.freedesktop.org/dbus/dbus/commit/?id=5bc7f9519ebc6117ba300c704794b36b87c2194b (1.8)
Upstream:http://cgit.freedesktop.org/dbus/dbus/commit/?h=dbus-1.6&id=6060aaa0ea1e9bbe1dd7a1864c8df52e333a45ee (1.6)
More Information

Updated: 2016-03-23 03:41:21 UTC (commit 10817)