CVE-2014-3532
EPSS 0.12%Published: 7/19/2014Modified: 4/28/2026
Also known as:DEBIAN-CVE-2014-3532
Description
dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6, when running on Linux 2.6.37-rc4 or later, allows local users to cause a denial of service (system-bus disconnect of other services or applications) by sending a message containing a file descriptor, then exceeding the maximum recursion depth before the initial message is forwarded.
Affected packages (1)
- Debian/dbusfrom 0, < 1.8.6-1