Vulnerability & Exploit Database

Displaying all 8 entries

Results for: CVE-2014-3637 Back to search

Alpine Linux: CVE-2014-3637: dbus security issues Vulnerability

  • Severity: 2
  • Published: September 21, 2014

D-Bus 1.3.0 through 1.6.x before 1.6.24 and 1.8.x before 1.8.8 does not properly close connections for processes that have terminated, which allows local users to cause a denial of service via a D-bus message containing a D-Bus connection file descriptor.

Gentoo Linux: CVE-2014-3637: D-Bus: Multiple Vulnerabilities Vulnerability

  • Severity: 2
  • Published: September 21, 2014

D-Bus 1.3.0 through 1.6.x before 1.6.24 and 1.8.x before 1.8.8 does not properly close connections for processes that have terminated, which allows local users to cause a denial of service via a D-bus message containing a D-Bus connection file descriptor.

Oracle Solaris 11: CVE-2014-3637: Vulnerability in DBus Vulnerability

  • Severity: 2
  • Published: September 21, 2014

D-Bus 1.3.0 through 1.6.x before 1.6.24 and 1.8.x before 1.8.8 does not properly close connections for processes that have terminated, which allows local users to cause a denial of service via a D-bus message containing a D-Bus connection file descriptor.

USN-2352-1: DBus vulnerabilities Vulnerability

  • Severity: 7
  • Published: September 21, 2014

Off-by-one error in D-Bus 1.3.0 through 1.6.x before 1.6.24 and 1.8.x before 1.8.8, when running on a 64-bit system and the max_message_unix_fds limit is set to an odd number, allows local users to cause a denial of service (dbus-daemon crash) or possibly execute arbitrary code by sending one more file descriptor than the limit, which tr...

SUSE: CVE-2014-3637: SUSE Linux Security Advisory Vulnerability

  • Severity: 2
  • Published: September 21, 2014

D-Bus 1.3.0 through 1.6.x before 1.6.24 and 1.8.x before 1.8.8 does not properly close connections for processes that have terminated, which allows local users to cause a denial of service via a D-bus message containing a D-Bus connection file descriptor.

DSA-3026-1 dbus -- security update Vulnerability

  • Severity: 7
  • Published: September 15, 2014

Off-by-one error in D-Bus 1.3.0 through 1.6.x before 1.6.24 and 1.8.x before 1.8.8, when running on a 64-bit system and the max_message_unix_fds limit is set to an odd number, allows local users to cause a denial of service (dbus-daemon crash) or possibly execute arbitrary code by sending one more file descriptor than the limit, which tr...

FreeBSD: dbus -- multiple vulnerabilities (Multiple CVEs) Vulnerability

  • Severity: 4
  • Published: September 15, 2014

Off-by-one error in D-Bus 1.3.0 through 1.6.x before 1.6.24 and 1.8.x before 1.8.8, when running on a 64-bit system and the max_message_unix_fds limit is set to an odd number, allows local users to cause a denial of service (dbus-daemon crash) or possibly execute arbitrary code by sending one more file descriptor than the limit, which tr...

ELSA-2013-1645 Important: Oracle Linux Kernel update Vulnerability

  • Severity: 10
  • Published: May 23, 2012

Integer signedness error in the CIFSFindNext function in fs/cifs/cifssmb.c in the Linux kernel before 3.1 allows remote CIFS servers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a large length value in a response to a read request for a directory.