ALSA-2022:6608
- Source
- https://errata.almalinux.org/9/ALSA-2022-6608.html
- Import Source
- https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2022:6608.json
- JSON Data
- https://api.osv.dev/v1/vulns/ALSA-2022:6608
- Related
- Published
- 2022-09-20T00:00:00Z
- Modified
- 2022-10-14T13:43:57Z
- Summary
- Moderate: dbus-broker security update
- Details
-
dbus-broker is an implementation of a message bus as defined by the D-Bus specification. Its aim is to provide high performance and reliability, while keeping compatibility to the D-Bus reference implementation. It is exclusively written for Linux systems, and makes use of many modern features provided by recent Linux kernel releases.
Security Fix(es):
- dbus-broker: a stack buffer over-read if a malicious Exec line is supplied (CVE-2022-31212)
- dbus-broker: null pointer reference when supplying a malformed XML config file (CVE-2022-31213)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
- References