dbus-broker-28-5.1.el9
エラータID: AXSA:2022-4072:01
dbus-broker is an implementation of a message bus as defined by the D-Bus specification. Its aim is to provide high performance and reliability, while keeping compatibility to the D-Bus reference implementation. It is exclusively written for Linux systems, and makes use of many modern features provided by recent Linux kernel releases.
Security Fix(es):
* dbus-broker: a stack buffer over-read if a malicious Exec line is supplied (CVE-2022-31212)
* dbus-broker: null pointer reference when supplying a malformed XML config file (CVE-2022-31213)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2022-31212
An issue was discovered in dbus-broker before 31. It depends on c-uitl/c-shquote to parse the DBus service's Exec line. c-shquote contains a stack-based buffer over-read if a malicious Exec line is supplied.
CVE-2022-31213
An issue was discovered in dbus-broker before 31. Multiple NULL pointer dereferences can be found when supplying a malformed XML config file.
Update packages.
An issue was discovered in dbus-broker before 31. It depends on c-uitl/c-shquote to parse the DBus service's Exec line. c-shquote contains a stack-based buffer over-read if a malicious Exec line is supplied.
An issue was discovered in dbus-broker before 31. Multiple NULL pointer dereferences can be found when supplying a malformed XML config file.
N/A
SRPMS
- dbus-broker-28-5.1.el9.src.rpm
MD5: 4100bf8006f5c2158f11679a2d2ff735
SHA-256: cc4c05466b030f97641be783a34c04b74d392150608e9aced77e0bebea2b1ba6
Size: 244.02 kB
Asianux Server 9 for x86_64
- dbus-broker-28-5.1.el9.x86_64.rpm
MD5: 9cd64f4c4c2ad6ad7c06dbf935a856a9
SHA-256: 1f9f1c2712bde4805e2fd5e49f5fbafe85d7ec56f0973d144fefc9896c8ec1e6
Size: 170.81 kB
日本語