[Pkg-utopia-maintainers] Bug#777545: CVE-2015-0245: denial of service in dbus >= 1.4

Simon McVittie smcv at debian.org
Mon Feb 9 15:44:23 UTC 2015


Package: dbus
Version: 1.4.0-1
Severity: serious
Tags: security upstream fixed-upstream pending
Justification: denial of service vulnerability
Control: close -1 1.9.10-1
Control: close -1 1.8.16-1

I have just released dbus 1.8.16 and 1.9.10 to fix a denial of service
vulnerability. wheezy, jessie, sid and experimental were vulnerable;
squeeze was not.

I have uploaded fixed versions for sid and experimental, and
am just waiting for a security team ack to upload a pre-prepared package:
https://anonscm.debian.org/cgit/pkg-utopia/dbus.git/commit/?h=debian-wheezy-pu

    S



More information about the Pkg-utopia-maintainers mailing list