[Forgot Password]
Login  Register Subscribe

23631

 
 

117687

 
 

98250

 
 

909

 
 

79198

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

MDVSA-2009:256-1 -- Mandriva dbus

ID: oval:org.secpod.oval:def:300733Date: (C)2012-01-07   (M)2017-10-04
Class: PATCHFamily: unix




A vulnerability was discovered and corrected in dbus: The _dbus_validate_signature_with_reason function in D-Bus uses incorrect logic to validate a basic type, which allows remote attackers to spoof a signature via a crafted key. NOTE: this is due to an incorrect fix for CVE-2008-3834 . This update provides a fix for this vulnerability. Update: Packages for 2008.0 are being provided due to extended support for Corporate products.

Platform:
Mandriva Linux 2008.0
Product:
dbus
Reference:
MDVSA-2009:256-1
CVE-2009-1189
CVE    1
CVE-2009-1189
CPE    1
cpe:/o:mandriva:linux:2008.0

© 2013 SecPod Technologies