svn commit: r357772 - head/security/vuxml
Koop Mast
kwm at FreeBSD.org
Sat Jun 14 12:16:58 UTC 2014
Author: kwm
Date: Sat Jun 14 12:16:57 2014
New Revision: 357772
URL: http://svnweb.freebsd.org/changeset/ports/357772
QAT: https://qat.redports.org/buildarchive/r357772/
Log:
Document dbus local dos
MFH: 2014Q2
Modified:
head/security/vuxml/vuln.xml
Modified: head/security/vuxml/vuln.xml
==============================================================================
--- head/security/vuxml/vuln.xml Sat Jun 14 12:12:33 2014 (r357771)
+++ head/security/vuxml/vuln.xml Sat Jun 14 12:16:57 2014 (r357772)
@@ -57,6 +57,37 @@ Notes:
-->
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
+ <vuln vid="52bbc7e8-f13c-11e3-bc09-bcaec565249c">
+ <topic>dbus -- local DoS</topic>
+ <affects>
+ <package>
+ <name>dbus</name>
+ <range><ge>1.8.0</ge><lt>1.8.4</lt></range>
+ <range><lt>1.6.20</lt></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>Simon MvVittie reports:</p>
+ <blockquote cite="http://lists.freedesktop.org/archives/dbus/2014-June/016220.html">
+ <p>Alban Crequy at Collabora Ltd. discovered and fixed a
+ denial-of-service flaw in dbus-daemon, part of the reference
+ implementation of D-Bus. Additionally, in highly unusual
+ environments the same flaw could lead to a side channel between
+ processes that should not be able to communicate.</p>
+ </blockquote>
+ </body>
+ </description>
+ <references>
+ <cvename>CVE-2014-3477</cvename>
+ <url>http://lists.freedesktop.org/archives/dbus/2014-June/016220.html</url>
+ </references>
+ <dates>
+ <discovery>2014-06-10</discovery>
+ <entry>2014-06-14</entry>
+ </dates>
+ </vuln>
+
<vuln vid="0b0fb9b0-f0fb-11e3-9bcd-000c6e25e3e9">
<topic>chromium -- multiple vulnerabilities</topic>
<affects>
More information about the svn-ports-head
mailing list