CVE-2014-3635
published 2014-09-22CVE-2014-3635: Off-by-one error in D-Bus 1.3.0 through 1.6.x before 1.6.24 and 1.8.x before 1.8.8, when running on a 64-bit system and the max_message_unix_fds limit is set…
medium4.4CVSS 3.1
AVLACMAuNCPIPAP
Off-by-one error in D-Bus 1.3.0 through 1.6.x before 1.6.24 and 1.8.x before 1.8.8, when running on a 64-bit system and the max_message_unix_fds limit is set to an odd number, allows local users to cause a denial of service (dbus-daemon crash) or possibly execute arbitrary code by sending one more file descriptor than the limit, which triggers a heap-based buffer overflow or an assertion failure.
Affected
23 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| d-bus_project | d-bus | <= 1.6.22 | — |
| debian | dbus | < dbus 1.8.8-1 (bookworm) | dbus 1.8.8-1 (bookworm) |
| freedesktop | dbus | — | — |
| freedesktop | dbus | — | — |
| freedesktop | dbus | — | — |
| freedesktop | dbus | — | — |
| freedesktop | dbus | — | — |
| freedesktop | dbus | — | — |
| freedesktop | dbus | — | — |
| freedesktop | dbus | — | — |
| freedesktop | dbus | — | — |
| freedesktop | dbus | — | — |
| freedesktop | dbus | — | — |
| freedesktop | dbus | — | — |
| freedesktop | dbus | — | — |
| freedesktop | dbus | — | — |
| freedesktop | dbus | — | — |
| freedesktop | dbus | >= 0 < 1.8.8-1 | 1.8.8-1 |
| freedesktop | dbus | >= 0 < 1.8.8-1 | 1.8.8-1 |
| freedesktop | dbus | >= 0 < 1.8.8-1 | 1.8.8-1 |
| freedesktop | dbus | >= 0 < 1.8.8-1 | 1.8.8-1 |
| freedesktop | dbus | >= 0 < 1.6.18-0ubuntu4.2 | 1.6.18-0ubuntu4.2 |
| opensuse | opensuse | — | — |
CVSS provenance
nvd4.4MEDIUMAV:L/AC:M/Au:N/C:P/I:P/A:P
osv4.4MEDIUM