{"id":"MGASA-2013-0173","summary":"Updated dbus packages fix security vulnerability","details":"Alexandru Cornea discovered a vulnerability in libdbus caused by an\nimplementation bug in _dbus_printf_string_upper_bound(). This\nvulnerability can be exploited by a local user to crash system services\nthat use libdbus, causing denial of service. Depending on the dbus\nservices running, it could lead to complete system crash (CVE-2013-2168).\n\nThis problem only currently appears to affect the x86_64 version of Mageia\nbut we advise that all systems should be updated.\n","modified":"2026-04-16T04:42:16.401679832Z","published":"2013-06-18T15:07:38Z","upstream":["CVE-2013-2168"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2013-0173.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=10520"},{"type":"WEB","url":"http://www.debian.org/security/2013/dsa-2707"}],"affected":[{"package":{"name":"dbus","ecosystem":"Mageia:2","purl":"pkg:rpm/mageia/dbus?arch=source&distro=mageia-2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.4.16-5.2.mga2"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2013-0173.json"}},{"package":{"name":"dbus","ecosystem":"Mageia:3","purl":"pkg:rpm/mageia/dbus?arch=source&distro=mageia-3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.6.8-4.1.mga3"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2013-0173.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}