ID CVE-2020-12049
Summary An issue was discovered in dbus >= 1.3.0 before 1.12.18. The DBusServer in libdbus, as used in dbus-daemon, leaks file descriptors when a message exceeds the per-message file descriptor limit. A local attacker with access to the D-Bus system bus or another system service's private AF_UNIX socket could use this to make the system service reach its file descriptor limit, denying service to subsequent D-Bus clients.
References
Vulnerable Configurations
  • cpe:2.3:a:freedesktop:dbus:1.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.3.1:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.3.1:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.4.1:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.4.4:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.4.4:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.4.6:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.4.6:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.4.8:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.4.8:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.4.10:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.4.10:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.4.12:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.4.12:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.4.16:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.4.16:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.4.18:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.4.18:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.4.20:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.4.20:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.4.22:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.4.22:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.4.24:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.4.24:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.4.26:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.4.26:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.5.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.5.2:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.5.2:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.5.4:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.5.4:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.5.6:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.5.6:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.5.8:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.5.8:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.5.10:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.5.10:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.5.12:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.5.12:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.6.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.6.2:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.6.2:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.6.4:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.6.4:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.6.6:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.6.6:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.6.8:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.6.8:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.6.10:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.6.10:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.6.12:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.6.12:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.6.14:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.6.14:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.6.16:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.6.16:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.6.18:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.6.18:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.6.20:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.6.20:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.6.22:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.6.22:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.6.24:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.6.24:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.6.26:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.6.26:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.6.28:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.6.28:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.6.30:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.6.30:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.7.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.7.2:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.7.2:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.7.4:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.7.4:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.7.6:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.7.6:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.7.8:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.7.8:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.7.10:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.7.10:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.8.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.8.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.8.2:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.8.2:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.8.4:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.8.4:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.8.6:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.8.6:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.8.8:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.8.8:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.8.10:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.8.10:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.8.12:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.8.12:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.8.14:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.8.14:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.8.16:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.8.16:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.8.18:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.8.18:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.8.20:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.8.20:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.8.22:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.8.22:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.9.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.9.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.9.2:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.9.2:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.9.4:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.9.4:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.9.6:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.9.6:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.9.8:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.9.8:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.9.10:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.9.10:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.9.12:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.9.12:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.9.14:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.9.14:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.9.16:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.9.16:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.9.18:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.9.18:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.9.20:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.9.20:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.10.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.10.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.10.2:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.10.2:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.10.4:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.10.4:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.10.6:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.10.6:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.10.8:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.10.8:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.10.10:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.10.10:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.10.12:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.10.12:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.10.14:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.10.14:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.10.16:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.10.16:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.10.18:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.10.18:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.10.20:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.10.20:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.10.22:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.10.22:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.10.24:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.10.24:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.10.26:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.10.26:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.10.28:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.10.28:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.11.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.11.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.11.2:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.11.2:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.11.4:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.11.4:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.11.6:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.11.6:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.11.8:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.11.8:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.11.10:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.11.10:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.11.12:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.11.12:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.11.14:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.11.14:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.11.16:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.11.16:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.11.18:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.11.18:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.11.20:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.11.20:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.11.22:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.11.22:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.12.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.12.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.12.2:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.12.2:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.12.4:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.12.4:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.12.6:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.12.6:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.12.8:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.12.8:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.12.10:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.12.10:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.12.12:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.12.12:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.12.14:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.12.14:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:dbus:1.12.16:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:dbus:1.12.16:*:*:*:*:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:*:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:*:*:*:*
CVSS
Base: 4.9 (as of 12-06-2023 - 07:15)
Impact:
Exploitability:
CWE CWE-404
CAPEC
  • UDP Fragmentation
    An attacker may execute a UDP Fragmentation attack against a target server in an attempt to consume resources such as bandwidth and CPU. IP fragmentation occurs when an IP datagram is larger than the MTU of the route the datagram has to traverse. Typically the attacker will use large UDP packets over 1500 bytes of data which forces fragmentation as ethernet MTU is 1500 bytes. This attack is a variation on a typical UDP flood but it enables more network bandwidth to be consumed with fewer packets. Additionally it has the potential to consume server CPU resources and fill memory buffers associated with the processing and reassembling of fragmented packets.
  • Excessive Allocation
    An adversary causes the target to allocate excessive resources to servicing the attackers' request, thereby reducing the resources available for legitimate services and degrading or denying services. Usually, this attack focuses on memory allocation, but any finite resource on the target could be the attacked, including bandwidth, processing cycles, or other resources. This attack does not attempt to force this allocation through a large number of requests (that would be Resource Depletion through Flooding) but instead uses one or a small number of requests that are carefully formatted to force the target to allocate excessive resources to service this request(s). Often this attack takes advantage of a bug in the target to cause the target to allocate resources vastly beyond what would be needed for a normal request.
  • TCP Fragmentation
    An attacker may execute a TCP Fragmentation attack against a target with the intention of avoiding filtering rules. IP fragmentation occurs when an IP datagram is larger than the MTU of the route the datagram has to traverse. The attacker attempts to fragment the TCP packet such that the headers flag field is pushed into the second fragment which typically is not filtered. This behavior defeats some IPS and firewall filters who typically check the FLAGS in the header of the first packet since dropping this packet prevents the following fragments from being processed and assembled. Another variation is overlapping fragments thus that an innocuous first segment passes the filter and the second segment overwrites the TCP header data with the true payload which is malicious in nature. The malicious payload manipulated properly may lead to a DoS due to resource consumption or kernel crash. Additionally the fragmentation could be used in conjunction with sending fragments at a rate slightly slower than the timeout to cause a DoS condition by forcing resources that assemble the packet to wait an inordinate amount of time to complete the task. The fragmentation identification numbers could also be duplicated very easily as there are only 16 bits in IPv4 so only 65536 packets are needed.
  • Resource Leak Exposure
    An adversary utilizes a resource leak on the target to deplete the quantity of the resource available to service legitimate requests. Resource leaks most often come in the form of memory leaks where memory is allocated but never released after it has served its purpose, however, theoretically, any other resource that can be reserved can be targeted if the target fails to release the reservation when the reserved resource block is no longer needed. In this attack, the adversary determines what activity results in leaked resources and then triggers that activity on the target. Since some leaks may be small, this may require a large number of requests by the adversary. However, this attack differs from a flooding attack in that the rate of requests is generally not significant. This is because the lost resources due to the leak accumulate until the target is reset, usually by restarting it. Thus, a resource-poor adversary who would be unable to flood the target can still utilize this attack. Resource depletion through leak differs from resource depletion through allocation in that, in the former, the adversary may not be able to control the size of each leaked allocation, but instead allows the leak to accumulate until it is large enough to affect the target's performance. When depleting resources through allocation, the allocated resource may eventually be released by the target so the attack relies on making sure that the allocation size itself is prohibitive of normal operations by the target.
  • Flooding
    An adversary consumes the resources of a target by rapidly engaging in a large number of interactions with the target. This type of attack generally exposes a weakness in rate limiting or flow. When successful this attack prevents legitimate users from accessing the service and can cause the target to crash. This attack differs from resource depletion through leaks or allocations in that the latter attacks do not rely on the volume of requests made to the target but instead focus on manipulation of the target's operations. The key factor in a flooding attack is the number of requests the adversary can make in a given period of time. The greater this number, the more likely an attack is to succeed against a given target.
  • ICMP Fragmentation
    An attacker may execute a ICMP Fragmentation attack against a target with the intention of consuming resources or causing a crash. The attacker crafts a large number of identical fragmented IP packets containing a portion of a fragmented ICMP message. The attacker these sends these messages to a target host which causes the host to become non-responsive. Another vector may be sending a fragmented ICMP message to a target host with incorrect sizes in the header which causes the host to hang.
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
cvss-vector via4 AV:L/AC:L/Au:N/C:N/I:N/A:C
redhat via4
advisories
  • bugzilla
    id 1849041
    title CVE-2020-12049 dbus: denial of service via file descriptor leak
    oval
    OR
    • comment Red Hat Enterprise Linux must be installed
      oval oval:com.redhat.rhba:tst:20070304026
    • AND
      • comment Red Hat Enterprise Linux 7 is installed
        oval oval:com.redhat.rhba:tst:20150364027
      • OR
        • AND
          • comment dbus is earlier than 1:1.10.24-14.el7_8
            oval oval:com.redhat.rhsa:tst:20202894001
          • comment dbus is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110376011
        • AND
          • comment dbus-devel is earlier than 1:1.10.24-14.el7_8
            oval oval:com.redhat.rhsa:tst:20202894003
          • comment dbus-devel is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110376013
        • AND
          • comment dbus-doc is earlier than 1:1.10.24-14.el7_8
            oval oval:com.redhat.rhsa:tst:20202894005
          • comment dbus-doc is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110376015
        • AND
          • comment dbus-libs is earlier than 1:1.10.24-14.el7_8
            oval oval:com.redhat.rhsa:tst:20202894007
          • comment dbus-libs is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110376017
        • AND
          • comment dbus-tests is earlier than 1:1.10.24-14.el7_8
            oval oval:com.redhat.rhsa:tst:20202894009
          • comment dbus-tests is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20202894010
        • AND
          • comment dbus-x11 is earlier than 1:1.10.24-14.el7_8
            oval oval:com.redhat.rhsa:tst:20202894011
          • comment dbus-x11 is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110376019
    rhsa
    id RHSA-2020:2894
    released 2020-07-13
    severity Important
    title RHSA-2020:2894: dbus security update (Important)
  • bugzilla
    id 1849041
    title CVE-2020-12049 dbus: denial of service via file descriptor leak
    oval
    OR
    • comment Red Hat Enterprise Linux must be installed
      oval oval:com.redhat.rhba:tst:20070304026
    • AND
      • comment Red Hat Enterprise Linux 8 is installed
        oval oval:com.redhat.rhba:tst:20193384074
      • OR
        • AND
          • comment dbus is earlier than 1:1.12.8-10.el8_2
            oval oval:com.redhat.rhsa:tst:20203014001
          • comment dbus is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110376011
        • AND
          • comment dbus-common is earlier than 1:1.12.8-10.el8_2
            oval oval:com.redhat.rhsa:tst:20203014003
          • comment dbus-common is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20193707004
        • AND
          • comment dbus-daemon is earlier than 1:1.12.8-10.el8_2
            oval oval:com.redhat.rhsa:tst:20203014005
          • comment dbus-daemon is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20193707006
        • AND
          • comment dbus-debugsource is earlier than 1:1.12.8-10.el8_2
            oval oval:com.redhat.rhsa:tst:20203014007
          • comment dbus-debugsource is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20193707008
        • AND
          • comment dbus-devel is earlier than 1:1.12.8-10.el8_2
            oval oval:com.redhat.rhsa:tst:20203014009
          • comment dbus-devel is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110376013
        • AND
          • comment dbus-libs is earlier than 1:1.12.8-10.el8_2
            oval oval:com.redhat.rhsa:tst:20203014011
          • comment dbus-libs is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110376017
        • AND
          • comment dbus-tools is earlier than 1:1.12.8-10.el8_2
            oval oval:com.redhat.rhsa:tst:20203014013
          • comment dbus-tools is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20193707014
        • AND
          • comment dbus-x11 is earlier than 1:1.12.8-10.el8_2
            oval oval:com.redhat.rhsa:tst:20203014015
          • comment dbus-x11 is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110376019
    rhsa
    id RHSA-2020:3014
    released 2020-07-21
    severity Important
    title RHSA-2020:3014: dbus security update (Important)
rpms
  • dbus-1:1.10.24-14.el7_8
  • dbus-debuginfo-1:1.10.24-14.el7_8
  • dbus-devel-1:1.10.24-14.el7_8
  • dbus-doc-1:1.10.24-14.el7_8
  • dbus-libs-1:1.10.24-14.el7_8
  • dbus-tests-1:1.10.24-14.el7_8
  • dbus-x11-1:1.10.24-14.el7_8
  • dbus-1:1.12.8-10.el8_2
  • dbus-common-1:1.12.8-10.el8_2
  • dbus-daemon-1:1.12.8-10.el8_2
  • dbus-daemon-debuginfo-1:1.12.8-10.el8_2
  • dbus-debuginfo-1:1.12.8-10.el8_2
  • dbus-debugsource-1:1.12.8-10.el8_2
  • dbus-devel-1:1.12.8-10.el8_2
  • dbus-libs-1:1.12.8-10.el8_2
  • dbus-libs-debuginfo-1:1.12.8-10.el8_2
  • dbus-tests-debuginfo-1:1.12.8-10.el8_2
  • dbus-tools-1:1.12.8-10.el8_2
  • dbus-tools-debuginfo-1:1.12.8-10.el8_2
  • dbus-x11-1:1.12.8-10.el8_2
  • dbus-x11-debuginfo-1:1.12.8-10.el8_2
  • dbus-1:1.12.8-8.el8_0
  • dbus-common-1:1.12.8-8.el8_0
  • dbus-daemon-1:1.12.8-8.el8_0
  • dbus-daemon-debuginfo-1:1.12.8-8.el8_0
  • dbus-debuginfo-1:1.12.8-8.el8_0
  • dbus-debugsource-1:1.12.8-8.el8_0
  • dbus-devel-1:1.12.8-8.el8_0
  • dbus-libs-1:1.12.8-8.el8_0
  • dbus-libs-debuginfo-1:1.12.8-8.el8_0
  • dbus-tests-debuginfo-1:1.12.8-8.el8_0
  • dbus-tools-1:1.12.8-8.el8_0
  • dbus-tools-debuginfo-1:1.12.8-8.el8_0
  • dbus-x11-1:1.12.8-8.el8_0
  • dbus-x11-debuginfo-1:1.12.8-8.el8_0
  • dbus-1:1.12.8-10.el8_1
  • dbus-common-1:1.12.8-10.el8_1
  • dbus-daemon-1:1.12.8-10.el8_1
  • dbus-daemon-debuginfo-1:1.12.8-10.el8_1
  • dbus-debuginfo-1:1.12.8-10.el8_1
  • dbus-debugsource-1:1.12.8-10.el8_1
  • dbus-devel-1:1.12.8-10.el8_1
  • dbus-libs-1:1.12.8-10.el8_1
  • dbus-libs-debuginfo-1:1.12.8-10.el8_1
  • dbus-tests-debuginfo-1:1.12.8-10.el8_1
  • dbus-tools-1:1.12.8-10.el8_1
  • dbus-tools-debuginfo-1:1.12.8-10.el8_1
  • dbus-x11-1:1.12.8-10.el8_1
  • dbus-x11-debuginfo-1:1.12.8-10.el8_1
refmap via4
confirm http://www.openwall.com/lists/oss-security/2020/06/04/3
gentoo GLSA-202007-46
misc
ubuntu
  • USN-4398-1
  • USN-4398-2
Last major update 12-06-2023 - 07:15
Published 08-06-2020 - 17:15
Last modified 12-06-2023 - 07:15
Back to Top