Vulnerabilities > CVE-2010-4352 - Resource Management Errors vulnerability in D-Bus Project D-Bus
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Stack consumption vulnerability in D-Bus (aka DBus) before 1.4.1 allows local users to cause a denial of service (daemon crash) via a message containing many nested variants.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
Nessus
NASL family Scientific Linux Local Security Checks NASL id SL_20110322_DBUS_ON_SL5_X.NASL description A denial of service flaw was discovered in the system for sending messages between applications. A local user could send a message with an excessive number of nested variants to the system-wide message bus, causing the message bus (and, consequently, any process using libdbus to receive messages) to abort. (CVE-2010-4352) For the update to take effect, all running instances of dbus-daemon and all running applications using the libdbus library must be restarted, or the system rebooted. last seen 2020-06-01 modified 2020-06-02 plugin id 60992 published 2012-08-01 reporter This script is Copyright (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/60992 title Scientific Linux Security Update : dbus on SL5.x, SL6.x i386/x86_64 NASL family CentOS Local Security Checks NASL id CENTOS_RHSA-2011-0376.NASL description Updated dbus packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. D-Bus is a system for sending messages between applications. It is used for the system-wide message bus service and as a per-user-login-session messaging facility. A denial of service flaw was discovered in the system for sending messages between applications. A local user could send a message with an excessive number of nested variants to the system-wide message bus, causing the message bus (and, consequently, any process using libdbus to receive messages) to abort. (CVE-2010-4352) All users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. For the update to take effect, all running instances of dbus-daemon and all running applications using the libdbus library must be restarted, or the system rebooted. last seen 2020-06-01 modified 2020-06-02 plugin id 53429 published 2011-04-15 reporter This script is Copyright (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/53429 title CentOS 5 : dbus (CESA-2011:0376) NASL family Oracle Linux Local Security Checks NASL id ORACLELINUX_ELSA-2011-0376.NASL description From Red Hat Security Advisory 2011:0376 : Updated dbus packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. D-Bus is a system for sending messages between applications. It is used for the system-wide message bus service and as a per-user-login-session messaging facility. A denial of service flaw was discovered in the system for sending messages between applications. A local user could send a message with an excessive number of nested variants to the system-wide message bus, causing the message bus (and, consequently, any process using libdbus to receive messages) to abort. (CVE-2010-4352) All users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. For the update to take effect, all running instances of dbus-daemon and all running applications using the libdbus library must be restarted, or the system rebooted. last seen 2020-06-01 modified 2020-06-02 plugin id 68236 published 2013-07-12 reporter This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/68236 title Oracle Linux 5 / 6 : dbus (ELSA-2011-0376) NASL family Red Hat Local Security Checks NASL id REDHAT-RHSA-2011-0376.NASL description Updated dbus packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. D-Bus is a system for sending messages between applications. It is used for the system-wide message bus service and as a per-user-login-session messaging facility. A denial of service flaw was discovered in the system for sending messages between applications. A local user could send a message with an excessive number of nested variants to the system-wide message bus, causing the message bus (and, consequently, any process using libdbus to receive messages) to abort. (CVE-2010-4352) All users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. For the update to take effect, all running instances of dbus-daemon and all running applications using the libdbus library must be restarted, or the system rebooted. last seen 2020-06-01 modified 2020-06-02 plugin id 52764 published 2011-03-23 reporter This script is Copyright (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/52764 title RHEL 5 / 6 : dbus (RHSA-2011:0376) NASL family Red Hat Local Security Checks NASL id REDHAT-RHSA-2011-0439.NASL description An updated rhev-hypervisor package that fixes one security issue and one bug is now available. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. The rhev-hypervisor package provides a Red Hat Enterprise Virtualization Hypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor is a dedicated Kernel-based Virtual Machine (KVM) hypervisor. It includes everything necessary to run and manage virtual machines: A subset of the Red Hat Enterprise Linux operating environment and the Red Hat Enterprise Virtualization Agent. Note: Red Hat Enterprise Virtualization Hypervisor is only available for the Intel 64 and AMD64 architectures with virtualization extensions. A NULL pointer dereference flaw was found in the Generic Receive Offload (GRO) functionality in the Linux kernel last seen 2020-06-01 modified 2020-06-02 plugin id 79278 published 2014-11-17 reporter This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/79278 title RHEL 5 : rhev-hypervisor (RHSA-2011:0439) NASL family SuSE Local Security Checks NASL id SUSE_11_3_DBUS-1-110426.NASL description Local users could crash the D-Bus daemon by sending a specially crafted message (CVE-2010-4352). last seen 2020-06-01 modified 2020-06-02 plugin id 75460 published 2014-06-13 reporter This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/75460 title openSUSE Security Update : dbus-1 (openSUSE-SU-2011:0401-1) NASL family SuSE Local Security Checks NASL id SUSE_DBUS-1-7482.NASL description Local users could crash the D-Bus daemon by sending a specially crafted message (CVE-2010-4352). This update also properly fixes CVE-2008-3834 / CVE-2009-1189. last seen 2020-06-01 modified 2020-06-02 plugin id 57177 published 2011-12-13 reporter This script is Copyright (C) 2011-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/57177 title SuSE 10 Security Update : dbus (ZYPP Patch Number 7482) NASL family Gentoo Local Security Checks NASL id GENTOO_GLSA-201110-14.NASL description The remote host is affected by the vulnerability described in GLSA-201110-14 (D-Bus: Multiple vulnerabilities) Multiple vulnerabilities have been discovered in D-Bus. Please review the CVE identifiers referenced below for details. Impact : The vulnerabilities allow for local Denial of Service (daemon crash), or arbitrary file overwriting. Workaround : There is no known workaround at this time. last seen 2020-06-01 modified 2020-06-02 plugin id 56589 published 2011-10-24 reporter This script is Copyright (C) 2011-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/56589 title GLSA-201110-14 : D-Bus: Multiple vulnerabilities NASL family Debian Local Security Checks NASL id DEBIAN_DSA-2149.NASL description Remi Denis-Courmont discovered that dbus, a message bus application, is not properly limiting the nesting level when examining messages with extensive nested variants. This allows an attacker to crash the dbus system daemon due to a call stack overflow via crafted messages. last seen 2020-03-17 modified 2011-01-21 plugin id 51588 published 2011-01-21 reporter This script is Copyright (C) 2011-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/51588 title Debian DSA-2149-1 : dbus - denial of service NASL family Ubuntu Local Security Checks NASL id UBUNTU_USN-1044-1.NASL description Remi Denis-Courmont discovered that D-Bus did not properly validate the number of nested variants when validating D-Bus messages. A local attacker could exploit this to cause a denial of service. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. last seen 2020-06-01 modified 2020-06-02 plugin id 51572 published 2011-01-19 reporter Ubuntu Security Notice (C) 2011-2019 Canonical, Inc. / NASL script (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/51572 title Ubuntu 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : dbus vulnerability (USN-1044-1) NASL family Fedora Local Security Checks NASL id FEDORA_2010-19166.NASL description You need to reboot to apply this update. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. last seen 2020-06-01 modified 2020-06-02 plugin id 51378 published 2010-12-26 reporter This script is Copyright (C) 2010-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/51378 title Fedora 14 : dbus-1.4.0-2.fc14 (2010-19166) NASL family Fedora Local Security Checks NASL id FEDORA_2010-19178.NASL description You need to reboot to apply this update. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. last seen 2020-06-01 modified 2020-06-02 plugin id 53395 published 2011-04-13 reporter This script is Copyright (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/53395 title Fedora 13 : dbus-1.2.24-2.fc13 (2010-19178) NASL family SuSE Local Security Checks NASL id SUSE_11_DBUS-1-110418.NASL description Local users could crash the D-Bus daemon by sending a specially crafted message (CVE-2010-4352). This update also properly fixes CVE-2008-3834 / CVE-2009-1189. last seen 2020-06-01 modified 2020-06-02 plugin id 53587 published 2011-04-29 reporter This script is Copyright (C) 2011-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/53587 title SuSE 11.1 Security Update : dbus (SAT Patch Number 4434) NASL family SuSE Local Security Checks NASL id SUSE_DBUS-1-7483.NASL description Local users could crash the D-Bus daemon by sending a specially crafted message (CVE-2010-4352). This update also properly fixes CVE-2008-3834 / CVE-2009-1189. last seen 2020-06-01 modified 2020-06-02 plugin id 53590 published 2011-04-29 reporter This script is Copyright (C) 2011-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/53590 title SuSE 10 Security Update : dbus (ZYPP Patch Number 7483) NASL family SuSE Local Security Checks NASL id SUSE_11_DBUS-1-110211.NASL description Local users could crash the D-Bus daemon by sending a specially crafted message. (CVE-2010-4352) Also RPM requirements were adjusted to make appliance installations work better. last seen 2020-06-01 modified 2020-06-02 plugin id 52066 published 2011-02-22 reporter This script is Copyright (C) 2011-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/52066 title SuSE 11.1 Security Update : dbus (SAT Patch Number 3941) NASL family SuSE Local Security Checks NASL id SUSE_11_2_DBUS-1-110426.NASL description Local users could crash the D-Bus daemon by sending a specially crafted message (CVE-2010-4352). last seen 2020-06-01 modified 2020-06-02 plugin id 53704 published 2011-05-05 reporter This script is Copyright (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/53704 title openSUSE Security Update : dbus-1 (openSUSE-SU-2011:0401-1) NASL family SuSE Local Security Checks NASL id OPENSUSE-2012-750.NASL description 6 vulnerabilities were discovered for the dbus-1 and dbus-1-x11 packages in openSUSE versions 11.4, 12.1, and 12.2. last seen 2020-06-05 modified 2014-06-13 plugin id 74795 published 2014-06-13 reporter This script is Copyright (C) 2014-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/74795 title openSUSE Security Update : dbus-1 / dbus-1-x11 (openSUSE-SU-2012:1418-1)
Redhat
| advisories |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| rpms |
|
References
- http://cgit.freedesktop.org/dbus/dbus/commit/?id=7d65a3a6ed8815e34a99c680ac3869fde49dbbd4
- http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
- http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052550.html
- http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00004.html
- http://lists.opensuse.org/opensuse-updates/2012-10/msg00094.html
- http://openwall.com/lists/oss-security/2010/12/16/3
- http://openwall.com/lists/oss-security/2010/12/16/6
- http://openwall.com/lists/oss-security/2010/12/21/3
- http://secunia.com/advisories/42580
- http://secunia.com/advisories/42760
- http://secunia.com/advisories/42911
- http://secunia.com/advisories/42960
- http://www.debian.org/security/2011/dsa-2149
- http://www.remlab.net/op/dbus-variant-recursion.shtml
- http://www.securityfocus.com/bid/45377
- http://www.ubuntu.com/usn/USN-1044-1
- http://www.vupen.com/english/advisories/2010/3325
- http://www.vupen.com/english/advisories/2011/0161
- http://www.vupen.com/english/advisories/2011/0178
- http://www.vupen.com/english/advisories/2011/0464
- https://bugs.freedesktop.org/show_bug.cgi?id=32321
- https://bugzilla.redhat.com/show_bug.cgi?id=663673