Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Fedora 8: 2008:2070 Moderate: Dbus Message Bus Policy Issue

fedora
Calendar Grey February 28, 2008
Dist Fedora Esm H88
This release addresses a vulnerability in dbus that could lead to evading security protocols on Fedora 8, thereby fortifying the integrity of system messaging.
This update fixes CVE-2008-0595.

Summary

D-BUS is a system for sending messages between applications. It is

used both for the systemwide message bus service, and as a

per-user-login-session messaging facility.

* Wed Feb 27 2008 David Zeuthen - 1.1.2-9.fc8

- CVE-2008-0595

* Thu Oct 25 2007 Bill Nottingham - 1.1.2-8

- have -libs obsolete older versions of the main package so that yum upgrades work

[ 1 ] Bug #432419 - CVE-2008-0595 dbus security policy circumvention

https://bugzilla.redhat.com/show_bug.cgi?id=432419

su -c 'yum update dbus' at the command line.

For more information, refer to "Managing Software with yum",

available at .

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

Fedora-package-announce mailing list

Fedora-package-announce@redhat.com

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Topics%20covered

Topics Covered

security advisory software update Fedora dbus system messaging policy issue

Change Log

References

Update Instructions

Severity
important
Lowest
Low
Medium
High
Critical

Product: Fedora 8
Version: 1.1.2
Release: 9.fc8
URL: https://https://
Summary: D-BUS message bus

Topics%20covered

Topics Covered

security advisory software update Fedora dbus system messaging policy issue

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here