VYPR
← All advisories
Unrated severityNVD Advisory· Published Feb 13, 2015· Updated May 6, 2026

CVE-2015-0245

CVE-2015-0245

Description

D-Bus 1.4.x through 1.6.x before 1.6.30, 1.8.x before 1.8.16, and 1.9.x before 1.9.10 does not validate the source of ActivationFailure signals, which allows local users to cause a denial of service (activation failure error returned) by leveraging a race condition involving sending an ActivationFailure signal before systemd responds.

Affected products

50
  • Freedesktop/Dbus48 versions
    cpe:2.3:a:freedesktop:dbus:1.4.0:*:*:*:*:*:*:*+ 47 more
    • cpe:2.3:a:freedesktop:dbus:1.4.0:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.4.4:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.4.6:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.4.8:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.4.10:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.4.12:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.4.14:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.4.16:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.4.18:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.4.26:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.5.0:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.5.2:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.4.20:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.4.24:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.9.2:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.9.4:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.9.6:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.9.8:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.5.4:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.5.6:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.5.8:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.5.10:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.5.12:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.6.0:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.6.2:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.6.4:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.6.6:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.6.8:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.6.10:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.6.12:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.6.14:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.6.16:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.6.18:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.6.20:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.6.22:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.6.24:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.6.26:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.6.28:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.8.0:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.8.2:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.8.4:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.8.6:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.8.8:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.8.10:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.8.12:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.8.14:*:*:*:*:*:*:*
    • cpe:2.3:a:freedesktop:dbus:1.9.0:*:*:*:*:*:*:*
  • OpenSUSE/openSUSE2 versions
    cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
    • cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

6

News mentions

0

No linked articles in our index yet.