CVE-2014-3635

CWE-119Buffer OverflowCWE-122Heap-based Buffer Overflow12 documents8 sources
Severity
4.4MEDIUM
EPSS
0.2%
top 61.33%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
D-bus Project D-busFreedesktop DbusOpensuse Opensuse
Timeline
PublishedSep 22
Latest updateMay 14

Description

Off-by-one error in D-Bus 1.3.0 through 1.6.x before 1.6.24 and 1.8.x before 1.8.8, when running on a 64-bit system and the max_message_unix_fds limit is set to an odd number, allows local users to cause a denial of service (dbus-daemon crash) or possibly execute arbitrary code by sending one more file descriptor than the limit, which triggers a heap-based buffer overflow or an assertion failure.

CVSS vector

AV:L/AC:M/C:P/I:P/A:PExploitability: 3.4 | Impact: 6.4

Affected Packages5 packages

Debiandbus< 1.8.8-1+3
Ubuntudbus< 1.6.18-0ubuntu4.2
NVDfreedesktop/dbus15 versions+14

Patches

Patch: bugs.freedesktop.orgPatch: bugs.freedesktop.org

🔴Vulnerability Details

4
GHSA
GHSA-hm35-xvpf-f225: Off-by-one error in D-Bus 12022-05-14
OSV
dbus vulnerabilities2014-09-22
CVEList
CVE-2014-3635: Off-by-one error in D-Bus 12014-09-22
OSV
CVE-2014-3635: Off-by-one error in D-Bus 12014-09-22

📋Vendor Advisories

3
Ubuntu
DBus vulnerabilities2014-09-22
Red Hat
dbus: heap-based buffer overflow flaw in file descriptor passing2014-09-16
Debian
CVE-2014-3635: dbus - Off-by-one error in D-Bus 1.3.0 through 1.6.x before 1.6.24 and 1.8.x before 1.8...2014

💬Community

4
Bugzilla
CVE-2014-3638 CVE-2014-3639 CVE-2014-3636 CVE-2014-3637 CVE-2014-3635 mingw-dbus: various flaws [fedora-all]2014-09-17
Bugzilla
CVE-2014-3638 CVE-2014-3639 CVE-2014-3636 CVE-2014-3637 CVE-2014-3635 mingw-dbus: various flaws [epel-7]2014-09-17
Bugzilla
CVE-2014-3638 CVE-2014-3639 CVE-2014-3636 CVE-2014-3637 CVE-2014-3635 dbus: various flaws [fedora-all]2014-09-17
Bugzilla
CVE-2014-3635 dbus: heap-based buffer overflow flaw in file descriptor passing2014-09-11
CVE-2014-3635 (MEDIUM CVSS 4.4) | Off-by-one error in D-Bus 1.3.0 thr | cvebase.io