svn commit: r357780 - branches/2014Q2/security/vuxml
Koop Mast
kwm at FreeBSD.org
Sat Jun 14 14:10:13 UTC 2014
Author: kwm
Date: Sat Jun 14 14:10:12 2014
New Revision: 357780
URL: http://svnweb.freebsd.org/changeset/ports/357780
QAT: https://qat.redports.org/buildarchive/r357780/
Log:
MFH: r357772
Document dbus local dos
Approved by: portmgr (miwi)
Modified:
branches/2014Q2/security/vuxml/vuln.xml
Directory Properties:
branches/2014Q2/ (props changed)
Modified: branches/2014Q2/security/vuxml/vuln.xml
==============================================================================
--- branches/2014Q2/security/vuxml/vuln.xml Sat Jun 14 13:40:09 2014 (r357779)
+++ branches/2014Q2/security/vuxml/vuln.xml Sat Jun 14 14:10:12 2014 (r357780)
@@ -51,6 +51,37 @@ Note: Please add new entries to the beg
-->
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
+ <vuln vid="52bbc7e8-f13c-11e3-bc09-bcaec565249c">
+ <topic>dbus -- local DoS</topic>
+ <affects>
+ <package>
+ <name>dbus</name>
+ <range><ge>1.8.0</ge><lt>1.8.4</lt></range>
+ <range><lt>1.6.20</lt></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>Simon MvVittie reports:</p>
+ <blockquote cite="http://lists.freedesktop.org/archives/dbus/2014-June/016220.html">
+ <p>Alban Crequy at Collabora Ltd. discovered and fixed a
+ denial-of-service flaw in dbus-daemon, part of the reference
+ implementation of D-Bus. Additionally, in highly unusual
+ environments the same flaw could lead to a side channel between
+ processes that should not be able to communicate.</p>
+ </blockquote>
+ </body>
+ </description>
+ <references>
+ <cvename>CVE-2014-3477</cvename>
+ <url>http://lists.freedesktop.org/archives/dbus/2014-June/016220.html</url>
+ </references>
+ <dates>
+ <discovery>2014-06-10</discovery>
+ <entry>2014-06-14</entry>
+ </dates>
+ </vuln>
+
<vuln vid="0b0fb9b0-f0fb-11e3-9bcd-000c6e25e3e9">
<topic>chromium -- multiple vulnerabilities</topic>
<affects>
More information about the svn-ports-all
mailing list