CVE-2008-3834 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2008-3834
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-3834

Description: The dbus_signature_validate function in the D-bus library (libdbus) before 1.2.4 allows remote attackers to cause a denial of service (application abort) via a message containing a malformed signature, which triggers a failed assertion error.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/45701 UBUNTU http://www.ubuntu.com/usn/usn-653-1 SUSE http://lists.opensuse.org/opensuse-security-announce/2008-12/msg00002.html ST 1021063 SAID Secunia Advisory: SA32127 Secunia Advisory: SA32281 Secunia Advisory: SA32385 Secunia Advisory: SA32230 Secunia Advisory: SA33396 REDHAT http://www.redhat.com/support/errata/RHSA-2009-0008.html MILW0RM http://www.milw0rm.com/exploits/7822 MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2008:213 FEDORA DEBIAN http://www.debian.org/security/2008/dsa-1658 CONFIRM http://www.freedesktop.org/wiki/Software/dbus#head-dad0dab297a44f1d7a3b1259cfc06b583fd6a88a BID 31602

Return to the previous page.