CVE-2014-7824

Published: Nov 18, 2014Modified: May 6, 2026

2.1

Vector

AV:L/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 3.9 / Impact: 2.9

Source: NVD

Description

D-Bus 1.3.0 through 1.6.x before 1.6.26, 1.8.x before 1.8.10, and 1.9.x before 1.9.2 allows local users to cause a denial of service (prevention of new connections and connection drop) by queuing the maximum number of file descriptors. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-3636.1.

Affected (26)

Products: Freedesktop: Dbus · Debian: Debian Linux · Mageia Project: Mageia · +1 more

Show all products

Freedesktop: Dbus · Debian: Debian Linux · Mageia Project: Mageia · Canonical: Ubuntu Linux

1 product

1 product

1 product

1 product

Configuration A

19 vulnerable

Vulnerable Software	Affected Versions
Freedesktop Dbus	Version 1.6.0
Freedesktop Dbus	Version 1.6.10
Freedesktop Dbus	Version 1.6.12
Freedesktop Dbus	Version 1.6.14
Freedesktop Dbus	Version 1.6.16
Freedesktop Dbus	Version 1.6.18
Freedesktop Dbus	Version 1.6.20
Freedesktop Dbus	Version 1.6.22
Freedesktop Dbus	Version 1.6.24
Freedesktop Dbus	Version 1.6.2
Freedesktop Dbus	Version 1.6.4
Freedesktop Dbus	Version 1.6.6
Freedesktop Dbus	Version 1.6.8
Freedesktop Dbus	Version 1.8.0
Freedesktop Dbus	Version 1.8.2
Freedesktop Dbus	Version 1.8.4
Freedesktop Dbus	Version 1.8.6
Freedesktop Dbus	Version 1.8.8
Freedesktop Dbus	Version 1.9.0

Configuration B

2 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 7.0
Debian Debian Linux	Version 8.0

Configuration C

2 vulnerable

Vulnerable Software	Affected Versions
Mageia Project Mageia	Version 3
Mageia Project Mageia	Version 4

Configuration D

3 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 12.04
Canonical Ubuntu Linux	Version 14.04
Canonical Ubuntu Linux	Version 14.10

Related CWEs

References (18)

http://advisories.mageia.org/MGASA-2014-0457.html

Source: secalert@redhat.com

http://secunia.com/advisories/62603

Source: secalert@redhat.com

http://www.debian.org/security/2014/dsa-3099

Source: secalert@redhat.com

http://www.mandriva.com/security/advisories?name=MDVSA-2015:176

Source: secalert@redhat.com

http://www.openwall.com/lists/oss-security/2014/11/10/2

Source: secalert@redhat.com

Exploit

http://www.securityfocus.com/bid/71012

Source: secalert@redhat.com

http://www.ubuntu.com/usn/USN-2425-1

Source: secalert@redhat.com

https://bugs.freedesktop.org/show_bug.cgi?id=85105

Source: secalert@redhat.com

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/98576

Source: secalert@redhat.com

http://advisories.mageia.org/MGASA-2014-0457.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/62603

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2014/dsa-3099

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mandriva.com/security/advisories?name=MDVSA-2015:176

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2014/11/10/2

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

http://www.securityfocus.com/bid/71012

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-2425-1

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugs.freedesktop.org/show_bug.cgi?id=85105

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/98576

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.