SciLinux: CVE-2009-1189 Moderate: dbus SL5.x i386/x86_64
Summary
between applications. A local user could use this flaw to send amessage with a malformed signature to the bus, causing the bus (and,consequently, any process using libdbus to receive messages) to abort.(CVE-2009-1189)Note: Users running any application providing services over the systemmessage bus are advised to test this update carefully before deployingit in production environments.For the update to take effect, all running instances of dbus-daemon andall running applications using the libdbus library must be restarted, orthe system rebooted.SL 5.xSRPMS:dbus-1.1.2-12.el5_4.1.src.rpmi386:dbus-1.1.2-12.el5_4.1.i386.rpmdbus-devel-1.1.2-12.el5_4.1.i386.rpmdbus-libs-1.1.2-12.el5_4.1.i386.rpmdbus-x11-1.1.2-12.el5_4.1.i386.rpmx86_64:dbus-1.1.2-12.el5_4.1.i386.rpmdbus-1.1.2-12.el5_4.1.x86_64.rpmdbus-devel-1.1.2-12.el5_4.1.i386.rpmdbus-devel-1.1.2-12.el5_4.1.x86_64.rpmdbus-libs-1.1.2-12.el5_4.1.i386.rpmdbus-libs-1.1.2-12.el5_4.1.x86_64.rpmdbus-x11-1.1.2-12.el5_4.1.x86_64.rpm-Connie Sieh-Troy Dawson