Nome do pacote
dbus
Data
2013-06-25
ID Alerta
MDVSA-2013:177
Versões afetadas
MBS1 x86_64

Descrição do problema

Updated dbus packages fix security vulnerability.

Alexandru Cornea discovered a vulnerability in libdbus caused by
an implementation bug in _dbus_printf_string_upper_bound(). This
vulnerability can be exploited by a local user to crash system
services that use libdbus, causing denial of service. Depending on
the dbus services running, it could lead to complete system crash
(CVE-2013-2168).

Pacotes atualizados

MBS1 x86_64

 6e569daec73e8128d62aadac32337dfc  mbs1/x86_64/dbus-1.4.16-6.2.mbs1.x86_64.rpm
 5b6e72fdacad1b24d5cb87446e56ab68  mbs1/x86_64/dbus-doc-1.4.16-6.2.mbs1.x86_64.rpm
 ccbba9375dd7c6e355797c6215501780  mbs1/x86_64/dbus-x11-1.4.16-6.2.mbs1.x86_64.rpm
 89e5be95e460251ac2de05bcf523cf84  mbs1/x86_64/lib64dbus-1_3-1.4.16-6.2.mbs1.x86_64.rpm
 e2883a10a4c5c0b45b07aa1ed66a6dba  mbs1/x86_64/lib64dbus-1-devel-1.4.16-6.2.mbs1.x86_64.rpm 
 6305ba23e81d096a3081db88a3904a5d  mbs1/SRPMS/dbus-1.4.16-6.2.mbs1.src.rpm

Referências