Search CVE reports


Toggle filters

11 – 20 of 41 results


CVE-2022-31213

Medium priority
Vulnerable

An issue was discovered in dbus-broker before 31. Multiple NULL pointer dereferences can be found when supplying a malformed XML config file.

1 affected package

dbus-broker

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
dbus-broker Not affected Vulnerable Not in release Not in release Not in release
Show less packages

CVE-2022-31212

Medium priority
Vulnerable

An issue was discovered in dbus-broker before 31. It depends on c-uitl/c-shquote to parse the DBus service's Exec line. c-shquote contains a stack-based buffer over-read if a malicious Exec line is supplied.

1 affected package

dbus-broker

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
dbus-broker Not affected Vulnerable
Show less packages

CVE-2020-35512

Low priority

Some fixes available 3 of 4

A use-after-free flaw was found in D-Bus Development branch <= 1.13.16, dbus-1.12.x stable branch <= 1.12.18, and dbus-1.10.x and older branches <= 1.10.30 when a system has multiple usernames sharing the same UID. When a set of...

1 affected package

dbus

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
dbus Not affected Not affected Fixed Fixed Fixed
Show less packages

CVE-2020-12049

Medium priority
Fixed

An issue was discovered in dbus >= 1.3.0 before 1.12.18. The DBusServer in libdbus, as used in dbus-daemon, leaks file descriptors when a message exceeds the per-message file descriptor limit. A local attacker with access to the...

1 affected package

dbus

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
dbus Fixed Fixed Fixed
Show less packages

CVE-2019-14463

Medium priority

Some fixes available 3 of 4

An issue was discovered in libmodbus before 3.0.7 and 3.1.x before 3.1.5. There is an out-of-bounds read for the MODBUS_FC_WRITE_MULTIPLE_REGISTERS case, aka VD-1301.

1 affected package

libmodbus

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libmodbus Not affected Not affected Fixed Fixed
Show less packages

CVE-2019-14462

Medium priority

Some fixes available 3 of 4

An issue was discovered in libmodbus before 3.0.7 and 3.1.x before 3.1.5. There is an out-of-bounds read for the MODBUS_FC_WRITE_MULTIPLE_COILS case, aka VD-1302.

1 affected package

libmodbus

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libmodbus Not affected Not affected Fixed Fixed
Show less packages

CVE-2019-12749

Medium priority
Fixed

dbus before 1.10.28, 1.12.x before 1.12.16, and 1.13.x before 1.13.12, as used in DBusServer in Canonical Upstart in Ubuntu 14.04 (and in some, less common, uses of dbus-daemon), allows cookie spoofing because of...

1 affected package

dbus

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
dbus Fixed Fixed
Show less packages

CVE-2015-1326

Medium priority
Fixed

python-dbusmock before version 0.15.1 AddTemplate() D-Bus method call or DBusTestCase.spawn_server_template() method could be tricked into executing malicious code if an attacker supplies a .pyc file.

1 affected package

python-dbusmock

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
python-dbusmock
Show less packages

CVE-2015-0245

Medium priority

Some fixes available 2 of 4

D-Bus 1.4.x through 1.6.x before 1.6.30, 1.8.x before 1.8.16, and 1.9.x before 1.9.10 does not validate the source of ActivationFailure signals, which allows local users to cause a denial of service (activation failure error...

1 affected package

dbus

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
dbus Not affected
Show less packages

CVE-2014-7824

Medium priority
Fixed

D-Bus 1.3.0 through 1.6.x before 1.6.26, 1.8.x before 1.8.10, and 1.9.x before 1.9.2 allows local users to cause a denial of service (prevention of new connections and connection drop) by queuing the maximum number of...

1 affected package

dbus

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
dbus
Show less packages