Skip to navigation

Security Advisory dbus security update.

Advisory: RHSA-2005:102-09
Type: Security Advisory
Severity: Low
Issued on: 2005-06-08
Last updated on: 2005-06-08
Affected Products: Red Hat Desktop (v. 4)
Red Hat Enterprise Linux AS (v. 4)
Red Hat Enterprise Linux ES (v. 4)
Red Hat Enterprise Linux WS (v. 4)
CVEs (cve.mitre.org): CVE-2005-0201

Details

Updated dbus packages that fix a security issue are now available for
Red Hat Enterprise Linux 4.

This update has been rated as having low security impact by the Red Hat
Security Response Team.

D-BUS is a system for sending messages between applications. It is
used both for the systemwide message bus service, and as a
per-user-login-session messaging facility.

Dan Reed discovered that a user can send and listen to messages on another
user's per-user session bus if they know the address of the socket. The
Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned
the name CAN-2005-0201 to this issue. In Red Hat Enterprise Linux 4, the
per-user session bus is only used for printing notifications, therefore
this issue would only allow a local user to examine or send additional
print notification messages.

Users of dbus are advised to upgrade to these updated packages,
which contain backported patches to correct this issue.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied. Use Red Hat
Network to download and update your packages. To launch the Red Hat
Update Agent, use the following command:

up2date

For information on how to install packages manually, refer to the
following Web page for the System Administration or Customization
guide specific to your system:

http://www.redhat.com/docs/manuals/enterprise/

Updated packages

Red Hat Desktop (v. 4)

IA-32:
dbus-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: de0a552c5ad910d6768e819b32a02a84
dbus-devel-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: db24da3fa2954c17567e91ae77776a0e
dbus-glib-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: a307b6498a5b61e9550d3dbb6d253e4a
dbus-python-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: 8332d90997bbec3edf57330a4b5cf081
dbus-x11-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: e9e4d40683926c6293ba3ff397130cc6
 
x86_64:
dbus-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: de0a552c5ad910d6768e819b32a02a84
dbus-0.22-12.EL.2.x86_64.rpm
File outdated by:  RHBA-2007:0190
    MD5: da338197be57085ac50bea095093e9c8
dbus-devel-0.22-12.EL.2.x86_64.rpm
File outdated by:  RHBA-2007:0190
    MD5: 7317ef4136b43a67a5b3b7c7b4c371aa
dbus-glib-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: a307b6498a5b61e9550d3dbb6d253e4a
dbus-glib-0.22-12.EL.2.x86_64.rpm
File outdated by:  RHBA-2007:0190
    MD5: 2eaed85d593d0c48878c625aff0a9b6e
dbus-python-0.22-12.EL.2.x86_64.rpm
File outdated by:  RHBA-2007:0190
    MD5: 590ff55a3a64ae1d7ba11f6e437a444e
dbus-x11-0.22-12.EL.2.x86_64.rpm
File outdated by:  RHBA-2007:0190
    MD5: d339d348abad3effab5489facb6292d4
 
Red Hat Enterprise Linux AS (v. 4)

IA-32:
dbus-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: de0a552c5ad910d6768e819b32a02a84
dbus-devel-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: db24da3fa2954c17567e91ae77776a0e
dbus-glib-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: a307b6498a5b61e9550d3dbb6d253e4a
dbus-python-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: 8332d90997bbec3edf57330a4b5cf081
dbus-x11-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: e9e4d40683926c6293ba3ff397130cc6
 
IA-64:
dbus-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: de0a552c5ad910d6768e819b32a02a84
dbus-0.22-12.EL.2.ia64.rpm
File outdated by:  RHBA-2007:0190
    MD5: 6ea8fa89d0181efd64cd6831a397ec76
dbus-devel-0.22-12.EL.2.ia64.rpm
File outdated by:  RHBA-2007:0190
    MD5: 40913e5f8543c76ef64ea53d05a7bccc
dbus-glib-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: a307b6498a5b61e9550d3dbb6d253e4a
dbus-glib-0.22-12.EL.2.ia64.rpm
File outdated by:  RHBA-2007:0190
    MD5: e2de096c0739747f8a35ffd5d7714f8d
dbus-python-0.22-12.EL.2.ia64.rpm
File outdated by:  RHBA-2007:0190
    MD5: bd3a1bb1d3c7d6eabff84fe53f2bde71
dbus-x11-0.22-12.EL.2.ia64.rpm
File outdated by:  RHBA-2007:0190
    MD5: cde66fb269cb0b9b1853bf4f3591bddb
 
PPC:
dbus-0.22-12.EL.2.ppc.rpm
File outdated by:  RHBA-2007:0190
    MD5: 53fcf4cab57ac441cc93632f0e226f46
dbus-0.22-12.EL.2.ppc64.rpm
File outdated by:  RHBA-2007:0190
    MD5: 7d12c812849775e0527b0e4db1e61708
dbus-devel-0.22-12.EL.2.ppc.rpm
File outdated by:  RHBA-2007:0190
    MD5: e9dce9977790959d81de62d4db6d08d8
dbus-glib-0.22-12.EL.2.ppc.rpm
File outdated by:  RHBA-2007:0190
    MD5: c45001a18409a92c52f52635e6e8cbb4
dbus-glib-0.22-12.EL.2.ppc64.rpm
File outdated by:  RHBA-2007:0190
    MD5: a728e0bde51ad5a5e4cab02b79300669
dbus-python-0.22-12.EL.2.ppc.rpm
File outdated by:  RHBA-2007:0190
    MD5: e47c8e7145f91eccabb3087a6601d37b
dbus-x11-0.22-12.EL.2.ppc.rpm
File outdated by:  RHBA-2007:0190
    MD5: 541c5238507b667de8c82278fb1a7d62
 
s390:
dbus-0.22-12.EL.2.s390.rpm
File outdated by:  RHBA-2007:0190
    MD5: 4f21f160fb3fb80d07ceee927c2a64db
dbus-devel-0.22-12.EL.2.s390.rpm
File outdated by:  RHBA-2007:0190
    MD5: 90f7505b954f71fffdbfd78360029a6f
dbus-glib-0.22-12.EL.2.s390.rpm
File outdated by:  RHBA-2007:0190
    MD5: dc3e6ed955ccf6a4c97eb74e152f3e63
dbus-python-0.22-12.EL.2.s390.rpm
File outdated by:  RHBA-2007:0190
    MD5: a275121d8250e98c6afde683ae1d0e56
dbus-x11-0.22-12.EL.2.s390.rpm
File outdated by:  RHBA-2007:0190
    MD5: 6ec4f7e99ffcaf0a3ee4f44286dc1f82
 
s390x:
dbus-0.22-12.EL.2.s390.rpm
File outdated by:  RHBA-2007:0190
    MD5: 4f21f160fb3fb80d07ceee927c2a64db
dbus-0.22-12.EL.2.s390x.rpm
File outdated by:  RHBA-2007:0190
    MD5: 70b9778d6ab98482d0e8c929756893bb
dbus-devel-0.22-12.EL.2.s390x.rpm
File outdated by:  RHBA-2007:0190
    MD5: 3c51e6b692ef85cd696c42ec938a2e28
dbus-glib-0.22-12.EL.2.s390.rpm
File outdated by:  RHBA-2007:0190
    MD5: dc3e6ed955ccf6a4c97eb74e152f3e63
dbus-glib-0.22-12.EL.2.s390x.rpm
File outdated by:  RHBA-2007:0190
    MD5: 037b6f34e2e4c238a383120165e45d46
dbus-python-0.22-12.EL.2.s390x.rpm
File outdated by:  RHBA-2007:0190
    MD5: 02e6d13bfa8bfa89b64cb97f4841dbb8
dbus-x11-0.22-12.EL.2.s390x.rpm
File outdated by:  RHBA-2007:0190
    MD5: 3a114f876a32ce244ffffc83ce4b2352
 
x86_64:
dbus-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: de0a552c5ad910d6768e819b32a02a84
dbus-0.22-12.EL.2.x86_64.rpm
File outdated by:  RHBA-2007:0190
    MD5: da338197be57085ac50bea095093e9c8
dbus-devel-0.22-12.EL.2.x86_64.rpm
File outdated by:  RHBA-2007:0190
    MD5: 7317ef4136b43a67a5b3b7c7b4c371aa
dbus-glib-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: a307b6498a5b61e9550d3dbb6d253e4a
dbus-glib-0.22-12.EL.2.x86_64.rpm
File outdated by:  RHBA-2007:0190
    MD5: 2eaed85d593d0c48878c625aff0a9b6e
dbus-python-0.22-12.EL.2.x86_64.rpm
File outdated by:  RHBA-2007:0190
    MD5: 590ff55a3a64ae1d7ba11f6e437a444e
dbus-x11-0.22-12.EL.2.x86_64.rpm
File outdated by:  RHBA-2007:0190
    MD5: d339d348abad3effab5489facb6292d4
 
Red Hat Enterprise Linux ES (v. 4)

IA-32:
dbus-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: de0a552c5ad910d6768e819b32a02a84
dbus-devel-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: db24da3fa2954c17567e91ae77776a0e
dbus-glib-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: a307b6498a5b61e9550d3dbb6d253e4a
dbus-python-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: 8332d90997bbec3edf57330a4b5cf081
dbus-x11-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: e9e4d40683926c6293ba3ff397130cc6
 
IA-64:
dbus-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: de0a552c5ad910d6768e819b32a02a84
dbus-0.22-12.EL.2.ia64.rpm
File outdated by:  RHBA-2007:0190
    MD5: 6ea8fa89d0181efd64cd6831a397ec76
dbus-devel-0.22-12.EL.2.ia64.rpm
File outdated by:  RHBA-2007:0190
    MD5: 40913e5f8543c76ef64ea53d05a7bccc
dbus-glib-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: a307b6498a5b61e9550d3dbb6d253e4a
dbus-glib-0.22-12.EL.2.ia64.rpm
File outdated by:  RHBA-2007:0190
    MD5: e2de096c0739747f8a35ffd5d7714f8d
dbus-python-0.22-12.EL.2.ia64.rpm
File outdated by:  RHBA-2007:0190
    MD5: bd3a1bb1d3c7d6eabff84fe53f2bde71
dbus-x11-0.22-12.EL.2.ia64.rpm
File outdated by:  RHBA-2007:0190
    MD5: cde66fb269cb0b9b1853bf4f3591bddb
 
x86_64:
dbus-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: de0a552c5ad910d6768e819b32a02a84
dbus-0.22-12.EL.2.x86_64.rpm
File outdated by:  RHBA-2007:0190
    MD5: da338197be57085ac50bea095093e9c8
dbus-devel-0.22-12.EL.2.x86_64.rpm
File outdated by:  RHBA-2007:0190
    MD5: 7317ef4136b43a67a5b3b7c7b4c371aa
dbus-glib-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: a307b6498a5b61e9550d3dbb6d253e4a
dbus-glib-0.22-12.EL.2.x86_64.rpm
File outdated by:  RHBA-2007:0190
    MD5: 2eaed85d593d0c48878c625aff0a9b6e
dbus-python-0.22-12.EL.2.x86_64.rpm
File outdated by:  RHBA-2007:0190
    MD5: 590ff55a3a64ae1d7ba11f6e437a444e
dbus-x11-0.22-12.EL.2.x86_64.rpm
File outdated by:  RHBA-2007:0190
    MD5: d339d348abad3effab5489facb6292d4
 
Red Hat Enterprise Linux WS (v. 4)

IA-32:
dbus-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: de0a552c5ad910d6768e819b32a02a84
dbus-devel-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: db24da3fa2954c17567e91ae77776a0e
dbus-glib-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: a307b6498a5b61e9550d3dbb6d253e4a
dbus-python-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: 8332d90997bbec3edf57330a4b5cf081
dbus-x11-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: e9e4d40683926c6293ba3ff397130cc6
 
IA-64:
dbus-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: de0a552c5ad910d6768e819b32a02a84
dbus-0.22-12.EL.2.ia64.rpm
File outdated by:  RHBA-2007:0190
    MD5: 6ea8fa89d0181efd64cd6831a397ec76
dbus-devel-0.22-12.EL.2.ia64.rpm
File outdated by:  RHBA-2007:0190
    MD5: 40913e5f8543c76ef64ea53d05a7bccc
dbus-glib-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: a307b6498a5b61e9550d3dbb6d253e4a
dbus-glib-0.22-12.EL.2.ia64.rpm
File outdated by:  RHBA-2007:0190
    MD5: e2de096c0739747f8a35ffd5d7714f8d
dbus-python-0.22-12.EL.2.ia64.rpm
File outdated by:  RHBA-2007:0190
    MD5: bd3a1bb1d3c7d6eabff84fe53f2bde71
dbus-x11-0.22-12.EL.2.ia64.rpm
File outdated by:  RHBA-2007:0190
    MD5: cde66fb269cb0b9b1853bf4f3591bddb
 
x86_64:
dbus-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: de0a552c5ad910d6768e819b32a02a84
dbus-0.22-12.EL.2.x86_64.rpm
File outdated by:  RHBA-2007:0190
    MD5: da338197be57085ac50bea095093e9c8
dbus-devel-0.22-12.EL.2.x86_64.rpm
File outdated by:  RHBA-2007:0190
    MD5: 7317ef4136b43a67a5b3b7c7b4c371aa
dbus-glib-0.22-12.EL.2.i386.rpm
File outdated by:  RHBA-2007:0190
    MD5: a307b6498a5b61e9550d3dbb6d253e4a
dbus-glib-0.22-12.EL.2.x86_64.rpm
File outdated by:  RHBA-2007:0190
    MD5: 2eaed85d593d0c48878c625aff0a9b6e
dbus-python-0.22-12.EL.2.x86_64.rpm
File outdated by:  RHBA-2007:0190
    MD5: 590ff55a3a64ae1d7ba11f6e437a444e
dbus-x11-0.22-12.EL.2.x86_64.rpm
File outdated by:  RHBA-2007:0190
    MD5: d339d348abad3effab5489facb6292d4
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

146766 - CAN-2005-0201 dbus information leak


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/