Opened 9 years ago
Closed 9 years ago
#5163 closed enhancement (fixed)
|Reported by:||Fernando de Oliveira||Owned by:||Fernando de Oliveira|
... D-Bus 1.8.4 (2014-06-10) == Security fix: • Alban Crequy at Collabora Ltd. discovered and fixed a denial-of-service flaw in dbus-daemon, part of the reference implementation of D-Bus. Additionally, in highly unusual environments the same flaw could lead to a side channel between processes that should not be able to communicate. (CVE-2014-3477, fd.o #78979) ...
Change History (2)
comment:1 by , 9 years ago
|Status:||new → assigned|
comment:2 by , 9 years ago
|Status:||assigned → closed|
Fixed at r13224.
Note: See TracTickets for help on using tickets.
Needs an sed for a upstream fix:
dbus-launch: kill bus if we can't attach to a session when requested