Oval Definition:oval:com.redhat.rhsa:def:20090008
Revision Date:2009-01-07Version:647
Title:RHSA-2009:0008: dbus security update (Moderate)
Description:D-Bus is a system for sending messages between applications. It is used for the system-wide message bus service and as a per-user-login-session messaging facility.

  • A denial-of-service flaw was discovered in the system for sending messages between applications. A local user could send a message with a malformed signature to the bus causing the bus (and, consequently, any process using libdbus to receive messages) to abort. (CVE-2008-3834)

    All users are advised to upgrade to these updated dbus packages, which contain backported patch which resolve this issue. For the update to take effect, all running instances of dbus-daemon and all running applications using libdbus library must be restarted, or the system rebooted.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2008-3834
    RHSA-2009:0008
    RHSA-2009:0008-01
    RHSA-2009:0008-01
    Platform(s):Red Hat Enterprise Linux 5
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 5 is installed
  • AND
  • dbus is earlier than 0:1.0.0-7.el5_2.1
  • AND dbus is signed with Red Hat redhatrelease2 key
  • dbus-devel is earlier than 0:1.0.0-7.el5_2.1
  • AND dbus-devel is signed with Red Hat redhatrelease2 key
  • dbus-x11 is earlier than 0:1.0.0-7.el5_2.1
  • AND dbus-x11 is signed with Red Hat redhatrelease2 key
    • BACK