Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The dbus-daemon in D-Bus 1.2.x through 1.4.x, 1.6.x before 1.6.20, and 1.8.x before 1.8.4, sends an AccessDenied error to the service instead of a client when the client is prohibited from accessing the service, which allows local users to cause a denial of service (initialization failure and exit) or possibly conduct a side-channel attack via a D-Bus message to an inactive service.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Red Hat D-Bus‘activation.c’拒绝服务漏洞
Vulnerability Description
Red Hat D-BUS(也称DBus)是美国红帽(Red Hat)公司的一个免费的消息总线模块,它提供了简单应用程序互相通讯的途径,是freedesktop.org项目的一部分。 Red Hat D-BUS的dbus-daemon中存在安全漏洞,该漏洞源于客户端被禁用访问服务时,程序发送AccessDenied错误到服务。本地攻击者可通过发送D-Bus消息利用该漏洞造成拒绝服务(初始化错误和退出)或实施旁路攻击。以下版本受到影响:D-Bus 1.2.x至1.4.x版本,1.6.20之前的1.6.x版本
CVSS Information
N/A
Vulnerability Type
N/A