SciLinux: CVE-2008-3834 dbus SL5.x i386/x86_64
Summary
Date: Wed, 7 Jan 2009 15:40:33 -0600Reply-To: Troy DawsonSender: Security Errata for Scientific Linux From: Troy Dawson Subject: Security ERRATA for dbus on SL5.x i386/x86_64Comments: To: "scientific-linux-errata@fnal.gov" Synopsis: Moderate: dbus security updateIssue date: 2009-01-07CVE Names: CVE-2008-3834A denial-of-service flaw was discovered in the system for sending messagesbetween applications. A local user could send a message with a malformedsignature to the bus causing the bus (and, consequently, any process usinglibdbus to receive messages) to abort. (CVE-2008-3834)SL 5.x SRPMS:dbus-1.0.0-7.el5_2.1.src.rpm i386:dbus-1.0.0-7.el5_2.1.i386.rpmdbus-devel-1.0.0-7.el5_2.1.i386.rpmdbus-x11-1.0.0-7.el5_2.1.i386.rpm x86_64:dbus-1.0.0-7.el5_2.1.i386.rpmdbus-1.0.0-7.el5_2.1.x86_64.rpmdbus-devel-1.0.0-7.el5_2.1.i386.rpmdbus-devel-1.0.0-7.el5_2.1.x86_64.rpmdbus-x11-1.0.0-7.el5_2.1.x86_64.rpm-Connie Sieh-Troy Dawson