Package "libdbus-1-3"
Name: |
libdbus-1-3
|
Description: |
simple interprocess messaging system (library)
|
Latest version: |
1.12.20-2ubuntu4.1 |
Release: |
jammy (22.04) |
Level: |
updates |
Repository: |
main |
Head package: |
dbus |
Homepage: |
https://dbus.freedesktop.org/ |
Links
Download "libdbus-1-3"
Other versions of "libdbus-1-3" in Jammy
Changelog
dbus (1.12.20-2ubuntu4.1) jammy-security; urgency=medium
* SECURITY UPDATE: Assertion failure in dbus-marshal-validate
- debian/patches/CVE-2022-42010.patch: Check brackets in signature nest
correctly
- CVE-2022-42010
* SECURITY UPDATE: Out-of-bound access in dbus-marshal-validate
- debian/patches/CVE-2022-42011.patch: Validate length of arrays of
fixed-length items
- CVE-2022-42011
* SECURITY UPDATE: Out-of-bound access in dbus-marshal-byteswap
- debian/patches/CVE-2022-42012.patch: Byte-swap Unix fd indexes if needed
- CVE-2022-42012
-- Nishit Majithia <email address hidden> Tue, 25 Oct 2022 18:45:07 +0530
|
CVE-2022-42010 |
An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. An authenticated attacker can cause dbus- |
CVE-2022-42011 |
An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. An authenticated attacker can cause dbus- |
CVE-2022-42012 |
An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. An authenticated attacker can cause dbus- |
|
About
-
Send Feedback to @ubuntu_updates