[dbus] [CVE-2008-0595] vulnerability in how the dbus-daemon applies its security policy
Bug #198661 reported by
disabled.user
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
dbus (Ubuntu) |
Fix Released
|
Medium
|
Kees Cook |
Bug Description
References:
MDVSA-2008:054 (http://
Quoting:
"A vulnerability was discovered by Havoc Pennington in how the
dbus-daemon applied its security policy. A user with the ability
to connect to the dbus-daemon could possibly execute certain method
calls that they should not normally have access to."
CVE References
To post a comment you must log in.
This bug is fixed in in Ubuntu Hardy, but it seems that there are no security updates for older Ubuntu versions. Did I miss something?