Wind River Support Network


LIN6-8538 : Security Advisory - dbus - CVE-2014-3637

Created: Oct 14, 2014    Updated: Dec 3, 2018
Resolved Date: Dec 28, 2014
Found In Version: 6.0
Fix Version:
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Userspace


D-Bus 1.3.0 through 1.6.x before 1.6.24 and 1.8.x before 1.8.8 does not properly close connections for processes that have terminated, which allows local users to cause a denial of service via a D-bus message containing a D-Bus connection file descriptor.<a href=>CWE-775: Missing Release of File Descriptor or Handle after Effective Lifetime</a>

Other Downloads

Live chat