Max CVSS | 6.9 | Min CVSS | 2.1 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2011-2200 | 4.6 |
The _dbus_header_byteswap function in dbus-marshal-header.c in D-Bus (aka DBus) 1.2.x before 1.2.28, 1.4.x before 1.4.12, and 1.5.x before 1.5.4 does not properly handle a non-native byte order, which allows local users to cause a denial of service (
|
27-12-2023 - 16:36 | 22-06-2011 - 22:55 | |
CVE-2020-12049 | 4.9 |
An issue was discovered in dbus >= 1.3.0 before 1.12.18. The DBusServer in libdbus, as used in dbus-daemon, leaks file descriptors when a message exceeds the per-message file descriptor limit. A local attacker with access to the D-Bus system bus or a
|
12-06-2023 - 07:15 | 08-06-2020 - 17:15 | |
CVE-2012-3524 | 6.9 |
libdbus 1.5.x and earlier, when used in setuid or other privileged programs in X.org and possibly other products, allows local users to gain privileges and execute arbitrary code via the DBUS_SYSTEM_BUS_ADDRESS environment variable. NOTE: libdbus mai
|
13-02-2023 - 04:34 | 18-09-2012 - 17:55 | |
CVE-2019-12749 | 3.6 |
dbus before 1.10.28, 1.12.x before 1.12.16, and 1.13.x before 1.13.12, as used in DBusServer in Canonical Upstart in Ubuntu 14.04 (and in some, less common, uses of dbus-daemon), allows cookie spoofing because of symlink mishandling in the reference
|
24-08-2020 - 17:37 | 11-06-2019 - 17:29 | |
CVE-2010-4352 | 2.1 |
Stack consumption vulnerability in D-Bus (aka DBus) before 1.4.1 allows local users to cause a denial of service (daemon crash) via a message containing many nested variants.
|
08-12-2016 - 03:01 | 30-12-2010 - 19:00 |