[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

MDVSA-2009:256 -- Mandriva dbus

ID: oval:org.secpod.oval:def:300540Date: (C)2012-01-07   (M)2017-10-04
Class: PATCHFamily: unix




A vulnerability was discovered and corrected in dbus: The _dbus_validate_signature_with_reason function in D-Bus uses incorrect logic to validate a basic type, which allows remote attackers to spoof a signature via a crafted key. NOTE: this is due to an incorrect fix for CVE-2008-3834 . This update provides a fix for this vulnerability.

Platform:
Mandriva Linux 2009.0
Mandriva Linux 2008.1
Product:
dbus
Reference:
MDVSA-2009:256
CVE-2009-1189
CVE    1
CVE-2009-1189
CPE    2
cpe:/o:mandriva:linux:2008.1
cpe:/o:mandriva:linux:2009.0

© 2013 SecPod Technologies