Unrated severityNVD Advisory· Published Jun 22, 2011· Updated Apr 29, 2026
CVE-2011-2200
CVE-2011-2200
Description
The _dbus_header_byteswap function in dbus-marshal-header.c in D-Bus (aka DBus) 1.2.x before 1.2.28, 1.4.x before 1.4.12, and 1.5.x before 1.5.4 does not properly handle a non-native byte order, which allows local users to cause a denial of service (connection loss), obtain potentially sensitive information, or conduct unspecified state-modification attacks via crafted messages.
Affected products
26cpe:2.3:a:d-bus_project:d-bus:1.2.4.2:*:*:*:*:*:*:permissive+ 2 more
- cpe:2.3:a:d-bus_project:d-bus:1.2.4.2:*:*:*:*:*:*:permissive
- cpe:2.3:a:d-bus_project:d-bus:1.2.4.4:*:*:*:*:*:*:permissive
- cpe:2.3:a:d-bus_project:d-bus:1.2.4.6:*:*:*:*:*:*:permissive
cpe:2.3:a:freedesktop:dbus:1.2.1:*:*:*:*:*:*:*+ 22 more
- cpe:2.3:a:freedesktop:dbus:1.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:dbus:1.2.10:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:dbus:1.2.12:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:dbus:1.2.14:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:dbus:1.2.16:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:dbus:1.2.18:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:dbus:1.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:dbus:1.2.20:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:dbus:1.2.22:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:dbus:1.2.24:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:dbus:1.2.26:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:dbus:1.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:dbus:1.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:dbus:1.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:dbus:1.2.8:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:dbus:1.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:dbus:1.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:dbus:1.4.10:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:dbus:1.4.4:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:dbus:1.4.6:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:dbus:1.4.8:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:dbus:1.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:dbus:1.5.2:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
16- cgit.freedesktop.org/dbus/dbus/commit/nvdPatch
- cgit.freedesktop.org/dbus/dbus/commit/nvdPatch
- cgit.freedesktop.org/dbus/dbus/tree/NEWSnvdPatch
- openwall.com/lists/oss-security/2011/06/12/1nvdPatch
- openwall.com/lists/oss-security/2011/06/13/12nvdPatch
- bugzilla.redhat.com/show_bug.cginvdPatch
- secunia.com/advisories/44896nvdVendor Advisory
- bugs.debian.org/cgi-bin/bugreport.cginvd
- cgit.freedesktop.org/dbus/dbus/tree/NEWSnvd
- kb.juniper.net/InfoCenter/indexnvd
- lists.freedesktop.org/archives/dbus/2007-March/007357.htmlnvd
- lists.freedesktop.org/archives/dbus/2011-May/014408.htmlnvd
- openwall.com/lists/oss-security/2011/06/12/2nvd
- www.redhat.com/support/errata/RHSA-2011-1132.htmlnvd
- bugs.freedesktop.org/show_bug.cginvd
- exchange.xforce.ibmcloud.com/vulnerabilities/67974nvd
News mentions
0No linked articles in our index yet.