CVE Vulnerabilities

CVE-2014-3638

Published: Sep 22, 2014 | Modified: Dec 27, 2023
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.1 LOW
AV:L/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

The bus_connections_check_reply function in config-parser.c in D-Bus before 1.6.24 and 1.8.x before 1.8.8 allows local users to cause a denial of service (CPU consumption) via a large number of method calls.

Affected Software

Name Vendor Start Version End Version
D-bus D-bus_project * 1.6.22
Dbus Freedesktop 1.6.0 1.6.0
Dbus Freedesktop 1.6.2 1.6.2
Dbus Freedesktop 1.6.4 1.6.4
Dbus Freedesktop 1.6.6 1.6.6
Dbus Freedesktop 1.6.8 1.6.8
Dbus Freedesktop 1.6.10 1.6.10
Dbus Freedesktop 1.6.12 1.6.12
Dbus Freedesktop 1.6.14 1.6.14
Dbus Freedesktop 1.6.16 1.6.16
Dbus Freedesktop 1.6.18 1.6.18
Dbus Freedesktop 1.6.20 1.6.20
Dbus Freedesktop 1.8.0 1.8.0
Dbus Freedesktop 1.8.2 1.8.2
Dbus Freedesktop 1.8.4 1.8.4
Dbus Freedesktop 1.8.6 1.8.6

References