Share your story
The central voice for Linux and Open Source security news
Home News Topics Advisories HOWTOs Features Newsletters About Register

Sign up!
EnGarde Community
What is the most important Linux security technology?
Linux Events
Linux User Groups
Link to Us
Security Center
Book Reviews
Security Dictionary
Security Tips
White Papers
Featured Blogs
All About Linux
DanWalsh LiveJournal
Latest Newsletters
Linux Advisory Watch: March 27th, 2015
Linux Security Week: March 23rd, 2015
LinuxSecurity Newsletters
Choose Lists:
About our Newsletters
RSS Feeds
Get the LinuxSecurity news you want faster with RSS
Powered By

Ubuntu: 1044-1: D-Bus vulnerability Print E-mail
User Rating:      How can I rate this item?
Posted by Benjamin D. Thomas   
Ubuntu Remi Denis-Courmont discovered that D-Bus did not properly validate thenumber of nested variants when validating D-Bus messages. A local attackercould exploit this to cause a denial of service. [More...]
Ubuntu Security Notice USN-1044-1          January 18, 2011
dbus vulnerability

A security issue affects the following Ubuntu releases:

Ubuntu 8.04 LTS
Ubuntu 9.10
Ubuntu 10.04 LTS
Ubuntu 10.10

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 8.04 LTS:
  libdbus-1-3                     1.1.20-1ubuntu3.4

Ubuntu 9.10:
  libdbus-1-3                     1.2.16-0ubuntu9.1

Ubuntu 10.04 LTS:
  libdbus-1-3                     1.2.16-2ubuntu4.1

Ubuntu 10.10:
  libdbus-1-3                     1.4.0-0ubuntu1.1

After a standard system update you need to reboot your computer to make
all the necessary changes.

Details follow:

Remi Denis-Courmont discovered that D-Bus did not properly validate the
number of nested variants when validating D-Bus messages. A local attacker
could exploit this to cause a denial of service.

Updated packages for Ubuntu 8.04 LTS:

  Source archives:
      Size/MD5:    30731 14911ba9f71e4c7a457441a0654c1568
      Size/MD5:     1915 7132713f4351d60638d2f9a7c7b50187
      Size/MD5:  1401902 c552b9bc4b69e4c602644abc21b7661e

  Architecture independent packages:
      Size/MD5:  1708168 3b87103f06e0403c75856b86b4cce718

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):
      Size/MD5:    44442 3018cb6b9b2838fcacea60476f98f0a4
      Size/MD5:   317708 1a8e7a344f84a12de61ecdeb2099440e
      Size/MD5:   138820 9bfe5ebd1a7793956f6821d2bc418d51
      Size/MD5:   187868 bdef41bd842beb25cbf8c7e846171843

  i386 architecture (x86 compatible Intel/AMD):
      Size/MD5:    43258 633cd8cbc86fda64f5f78e6b0111e8c0
      Size/MD5:   281652 719a502a85474c3e7607471a37c9f99c
      Size/MD5:   124192 e68a0a17512af8ee45396ea517d4e51e
      Size/MD5:   169420 2c6d14b7d1de8d68b970b617c5c47b68

  lpia architecture (Low Power Intel Architecture):
      Size/MD5:    43174 2194b9c64cb1bc255de8be73ebe31e40
      Size/MD5:   276086 81ed1ac740b7f911035273218dcd9e00
      Size/MD5:   122094 111edd4908d03f7906f528b723fe1fac
      Size/MD5:   165250 a79260e5a2da3bbca39ff9cf26fa1957

  powerpc architecture (Apple Macintosh G3/G4/G5):
      Size/MD5:    46744 73a49bd17d06aec4cdcf892c14065701
      Size/MD5:   306740 ef7f3173bb1e121b7795c177326738b6
      Size/MD5:   132242 45b1673cc89d40564721128f5b4667a0
      Size/MD5:   176450 8863c504a26182f079caa25e38e068dc

  sparc architecture (Sun SPARC/UltraSPARC):
      Size/MD5:    43456 42ea7238fbd0e3d63f104a8f333b23ce
      Size/MD5:   274954 ede65aab32b7c224c45e7b87de151485
      Size/MD5:   122558 b3e0b14c5d5f42626236dd17a4dc2497
      Size/MD5:   172258 f9871f7143fa33a4194a44530a326388

Updated packages for Ubuntu 9.10:

  Source archives:
      Size/MD5:     2126 67a2122d18da6e374ef6d0bf60cfa622
      Size/MD5:  1538983 af74c79fd8c46912f6f04aebd100a55f

  Architecture independent packages:
      Size/MD5:  1739058 14d9282d92bb2ba513d4090b143d0ecd

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):
      Size/MD5:    45770 4b05355ca1fa77808ef8d73b733ef50c
      Size/MD5:   210700 b2028fbd0fc4af84afbd9235b19b914f
      Size/MD5:   146092 5893422f9af1105c77aaf18ec47c725f
      Size/MD5:   220940 7e6c69e91021a39bc6c8304e8b78117a

  i386 architecture (x86 compatible Intel/AMD):
      Size/MD5:    44456 790a2972ffcf0972f4a25c158873c45a
      Size/MD5:   188600 a2993580f7875fe8cafcc7b631b7704b
      Size/MD5:   131040 f853d5f055ed5eb89e792edf6df9c4d8
      Size/MD5:   196314 358dc8d26718d58b8b0202617597862c

  armel architecture (ARM Architecture):
      Size/MD5:    44184 81959575e5f5ce1cdc277be99f12273e
      Size/MD5:   184056 92e222d19ece0e2801a1177ee3466f75
      Size/MD5:   127198 a2a4bb7b0aa0d318d16f4d770bb67512
      Size/MD5:   200750 c2befc0c184acdd97f89be9b655ed3a4

  lpia architecture (Low Power Intel Architecture):
      Size/MD5:    44740 c77a6b2284d8f9721b0aec1d800b8939
      Size/MD5:   187526 2435c64887aaba64d8b9079df0e809c3
      Size/MD5:   129978 4fac6f10aaeb5afc585cb8945c430fe3
      Size/MD5:   194100 111cdaf812925267c913eb015bc5cae2

  powerpc architecture (Apple Macintosh G3/G4/G5):
      Size/MD5:    45428 e0b492ffde6461e5d2fe3bfebdb962d8
      Size/MD5:   208238 90fd81067c6b05c32389d05f5f47490f
      Size/MD5:   139250 13858dff3836be134add9d96dc617dc5
      Size/MD5:   202790 e67c05cf6fece288f7af0f2a16575691

  sparc architecture (Sun SPARC/UltraSPARC):
      Size/MD5:    44718 f1e4bbfe8144d1d84a254a199b7fae1d
      Size/MD5:   184226 793710369c28bd9e464ff7c7a73f05c2
      Size/MD5:   128702 ee2db1b8d4db5a86b39fb53debae165b
      Size/MD5:   193702 1baaf3e2ea5d3824a8c491fd606a748c

Updated packages for Ubuntu 10.04 LTS:

  Source archives:
      Size/MD5:    33308 2cff23d217dd81eb8d906c77e9b1e922
      Size/MD5:     2360 1e891a07e45ecb29f39b502daf28c0b5
      Size/MD5:  1576209 c7a47b851ebe02f6726b65b78d1b730b

  Architecture independent packages:
      Size/MD5:  1730750 d88daea04100ff09c6fb24581847fa92

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):
      Size/MD5:    43156 f3de762eb0713a1ed4a9688fcf7e9d73
      Size/MD5:   209722 a46d048f145b5c4a921ff24ff7e485b9
      Size/MD5:   143450 dac584fc18981e5fd78b2788cbac37e7
      Size/MD5:    25342 b9faf49ec8e09b21efde6c99c342e3f9

  i386 architecture (x86 compatible Intel/AMD):
      Size/MD5:    41802 dc8f69948f798f3a027b20acdc52059e
      Size/MD5:   188972 fb68bd6aceaa6c93f402168748fc3e1c
      Size/MD5:   128248 c2dc036456c7d33e2beddaf669e8de86
      Size/MD5:    25340 08fa5b2372cb48999432a80da361e37d

  armel architecture (ARM Architecture):
      Size/MD5:    41818 85f23ff854769f007930da1d13220e1e
      Size/MD5:   172634 62e950f28018ab0e55ed8e1efe6113ad
      Size/MD5:   118692 99e366692bb3ba25bdbe6bf403c4c7a8
      Size/MD5:    25248 532bb7ac5d53bbedcd24e3380006269b

  powerpc architecture (Apple Macintosh G3/G4/G5):
      Size/MD5:    42776 c460ce063a13ca99143e60ec2834189a
      Size/MD5:   208684 92808853d3dd44e153c2e1308da712dc
      Size/MD5:   136318 19dcdcc1f7396dfd1dc183e32a990e3b
      Size/MD5:    25344 377a75b2c05d842451fa85c744ae4a88

  sparc architecture (Sun SPARC/UltraSPARC):
      Size/MD5:    42266 a2fcf1af4cc1f3e9a6e76050ca1c3a3d
      Size/MD5:   190192 f66b4efe660ca381b11c5d4e9b9acbc5
      Size/MD5:   129382 afb0f3aa70a48d2b64c24a4be7f44e03
      Size/MD5:    25340 2172b68707287e8880baf4af416f6cb4

Updated packages for Ubuntu 10.10:

  Source archives:
      Size/MD5:    33459 f2ee34cb8a11cbf5d64143e5ab74883b
      Size/MD5:     2335 5c1fc6828cecde5732b7205422760593
      Size/MD5:  1800347 f59618b18d2fb2bd1fce9e1c5a2a3282

  Architecture independent packages:
      Size/MD5:  1942586 ad0fa350b9428b6cf116aeb0f2457732

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):
      Size/MD5:   831724 4b07bc6d76f0231b91d4219f50e78068
      Size/MD5:    39222 df3255faec6afd8a71209e3b36e1fc53
      Size/MD5:   218792 f7b1d7635e7a790da5d97199af671cc3
      Size/MD5:   145234 74359a633c6d72755b9d482bb35f3d21
      Size/MD5:    25956 87a0b15cf7f19c401deabdf9878fbb82

  i386 architecture (x86 compatible Intel/AMD):
      Size/MD5:   837350 14853bfc4e0e3b3f7872e45c563c14e6
      Size/MD5:    37824 1b9513c37557f8797b01c4305b42014f
      Size/MD5:   195714 f81f233d7b6309ddb70eba7bb54ecdc7
      Size/MD5:   130006 6fa60d5c3ef722232ca79415354f4825
      Size/MD5:    25952 08fb32b2c05fbda78b26a7e9bf2eb0b3

  armel architecture (ARM Architecture):
      Size/MD5:   837100 1cdb6df9c5976b2a789fde5baad0d393
      Size/MD5:    37202 240497fe96f1e4d0cb304c7a618071ea
      Size/MD5:   190110 35903da49ec6e68d1edd3ed276ce9819
      Size/MD5:   126020 115cc77e978eb5cb04d44fd6bdf8fb6f
      Size/MD5:    26214 22f6093535cfb196f5015bd795d409c5

  powerpc architecture (Apple Macintosh G3/G4/G5):
      Size/MD5:   875648 48bc3df72a32b3d3d385ba46ed814855
      Size/MD5:    38830 ccdfebcf91df68df2f8d28036447baf8
      Size/MD5:   217680 1d3f9f69c78f03eb2111268f0bfeccbe
      Size/MD5:   140022 8d71802411f69193acbd30d26c7926a1
      Size/MD5:    25948 e9276a8fea728258210c3832ee55faea

< Prev   Next >


Latest Features
Peter Smith Releases Linux Network Security Online
Securing a Linux Web Server
Password guessing with Medusa 2.0
Password guessing as an attack vector
Squid and Digest Authentication
Squid and Basic Authentication
Demystifying the Chinese Hacking Industry: Earning 6 Million a Night
Free Online security course (LearnSIA) - A Call for Help
What You Need to Know About Linux Rootkits
Review: A Practical Guide to Fedora and Red Hat Enterprise Linux - Fifth Edition
Yesterday's Edition
Partner Sponsor

Community | HOWTOs | Blogs | Features | Book Reviews | Networking
 Security Projects |  Latest News |  Newsletters |  SELinux |  Privacy |  Home
 Hardening |   About Us |   Advertise |   Legal Notice |   RSS |   Guardian Digital
(c)Copyright 2015 Guardian Digital, Inc. All rights reserved.