USN-6372-1: DBus vulnerability
14 September 2023
DBus could be made to crash if it received a specially crafted request.
Releases
Packages
- dbus - simple interprocess messaging system
Details
It was discovered that DBus incorrectly handled certain
invalid messages. A local attacker could possibly use
this issue to cause DBus to crash, resulting in a denial
of service.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 16.04
-
dbus
-
1.10.6-1ubuntu3.6+esm3
Available with Ubuntu Pro
-
libdbus-1-3
-
1.10.6-1ubuntu3.6+esm3
Available with Ubuntu Pro
After a standard system update you need to reboot your computer to make
all the necessary changes.