CVE-2014-3532

描述

dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6, when running on Linux 2.6.37-rc4 or later, allows local users to cause a denial of service (system-bus disconnect of other services or applications) by sending a message containing a file descriptor, then exceeding the maximum recursion depth before the initial message is forwarded.

受影響套件(1)

• Debian/dbusfrom 0, < 1.8.6-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-3532