Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Moderate Security Advisory for D-Bus on Scientific Linux SL5.x/SL6.x

Calendar Aug 15, 2011 User Avatar LinuxSecurity Advisories
2 - 3 min read
Scientific Large Esm H500
Topics%20covered

Topics Covered

security advisory moderate denial of service security update update dbus Scientific Linux
Moderate: dbus security update 
Date: Mon, 15 Aug 2011 13:08:22 -0500
Reply-To: Troy Dawson 
Sender: Security Errata for Scientific Linux
 
From: Troy Dawson 
Subject: Security ERRATA Moderate: dbus on SL5.x, SL6.x i386/x86_64
Comments: To: "This email address is being protected from spambots. You need JavaScript enabled to view it."
 
MIME-Version: 1.0

Synopsis: Moderate: dbus security update
Issue Date: 2011-08-09
CVE Numbers: CVE-2011-2200

D-Bus is a system for sending messages between applications. It is used
for the system-wide message bus service and as a per-user-login-session
messaging facility.

A denial of service flaw was found in the way the D-Bus library handled
endianness conversion when receiving messages. A local user could use
this flaw to send a specially-crafted message to dbus-daemon or to a
service using the bus, such as Avahi or NetworkManager, possibly causing
the daemon to exit or the service to disconnect from the bus.
(CVE-2011-2200)

All users are advised to upgrade to these updated packages, which
contain a backported patch to correct this issue. For the update to take
effect, all running instances of dbus-daemon and all running
applications using the libdbus library must be restarted, or the system
rebooted.

SL5:
 i386
 dbus-1.1.2-16.el5_7.i386.rpm
 dbus-libs-1.1.2-16.el5_7.i386.rpm
 dbus-devel-1.1.2-16.el5_7.i386.rpm
 dbus-x11-1.1.2-16.el5_7.i386.rpm
 x86_64
 dbus-1.1.2-16.el5_7.i386.rpm
 dbus-1.1.2-16.el5_7.x86_64.rpm
 dbus-devel-1.1.2-16.el5_7.i386.rpm
 dbus-devel-1.1.2-16.el5_7.x86_64.rpm
 dbus-libs-1.1.2-16.el5_7.i386.rpm
 dbus-libs-1.1.2-16.el5_7.x86_64.rpm
 dbus-x11-1.1.2-16.el5_7.x86_64.rpm
SL6:
 i386
 dbus-1.2.24-5.el6_1.i686.rpm
 dbus-devel-1.2.24-5.el6_1.i686.rpm
 dbus-libs-1.2.24-5.el6_1.i686.rpm
 dbus-x11-1.2.24-5.el6_1.i686.rpm
 x86_64
 dbus-1.2.24-5.el6_1.x86_64.rpm
 dbus-libs-1.2.24-5.el6_1.i686.rpm
 dbus-libs-1.2.24-5.el6_1.x86_64.rpm
 dbus-devel-1.2.24-5.el6_1.i686.rpm
 dbus-devel-1.2.24-5.el6_1.x86_64.rpm
 dbus-x11-1.2.24-5.el6_1.x86_64.rpm

- Scientific Linux Development Team
Your message here