Freedesktop Dbus 1.1.20
Approved changes feed: RSS · Atom
cpe:2.3:a:freedesktop:dbus:1.1.20:*:*:*:*:*:*:*
part: a version: 1.1.20 update: *
| Vendor | Freedesktop (2c544e5d-e68e-5b35-a616-dc08f0ba697e) |
|---|---|
| Product | Dbus (7e992f2d-f5d6-5884-a5a2-9325da73d4f4) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:deb/debian/dbus |
purl2cpe | 2026-06-01 10:14:03.870887 |
pkg:deb/ubuntu/dbus |
purl2cpe | 2026-06-01 10:14:03.870889 |
pkg:github/freedesktop/dbus |
purl2cpe | 2026-06-01 10:14:03.870890 |
pkg:gitlab/redhat/dbus |
purl2cpe | 2026-06-01 10:14:03.870892 |
pkg:rpm/centos/dbus |
purl2cpe | 2026-06-01 10:14:03.870893 |
pkg:rpm/fedora/dbus |
purl2cpe | 2026-06-01 10:14:03.870895 |
pkg:rpm/opensuse/dbus |
purl2cpe | 2026-06-01 10:14:03.870896 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2009-1189 |
vulnerable | 2026-06-03 14:29:28.345519 |
Details available
The _dbus_validate_signature_with_reason function (dbus-marshal-validate.c) in D-Bus (aka DBus) before 1.2.14 uses incorrect logic to validate a basic type, which allows remote attackers to spoof a signature via a crafted key. NOTE: this is due to an incorrect fix for CVE-2008-3834.
Published: 2009-04-27T17:43:00.000Z
Updated: 2024-08-07T05:04:49.402Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.