Unrated severityNVD Advisory· Published Jun 8, 2023· Updated Jun 9, 2025
CVE-2023-34969
CVE-2023-34969
Description
D-Bus before 1.15.6 sometimes allows unprivileged users to crash dbus-daemon. If a privileged user with control over the dbus-daemon is using the org.freedesktop.DBus.Monitoring interface to monitor message bus traffic, then an unprivileged user with the ability to connect to the same dbus-daemon can cause a dbus-daemon crash under some circumstances via an unreplyable message. When done on the well-known system bus, this is a denial-of-service vulnerability. The fixed versions are 1.12.28, 1.14.8, and 1.15.6.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
39(expand)+ 1 more
- (no CPE)
- (no CPE)range: <1.15.6 || <1.12.28 || <1.14.8
- osv-coords37 versionspkg:rpm/almalinux/dbuspkg:rpm/almalinux/dbus-commonpkg:rpm/almalinux/dbus-daemonpkg:rpm/almalinux/dbus-develpkg:rpm/almalinux/dbus-libspkg:rpm/almalinux/dbus-toolspkg:rpm/almalinux/dbus-x11pkg:rpm/opensuse/dbus-1&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/dbus-1&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/dbus-1&distro=openSUSE%20Leap%20Micro%205.3pkg:rpm/opensuse/dbus-1&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/dbus-1-x11&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/dbus-1-x11&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/dbus-1-x11&distro=openSUSE%20Leap%20Micro%205.3pkg:rpm/suse/dbus-1&distro=SUSE%20Linux%20Enterprise%20Micro%205.1pkg:rpm/suse/dbus-1&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/dbus-1&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/dbus-1&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/dbus-1&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4pkg:rpm/suse/dbus-1&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5pkg:rpm/suse/dbus-1&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3pkg:rpm/suse/dbus-1&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/dbus-1&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/dbus-1&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/dbus-1&distro=SUSE%20Manager%20Proxy%204.2pkg:rpm/suse/dbus-1&distro=SUSE%20Manager%20Server%204.2pkg:rpm/suse/dbus-1-x11&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/dbus-1-x11&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/dbus-1-x11&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/dbus-1-x11&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4pkg:rpm/suse/dbus-1-x11&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5pkg:rpm/suse/dbus-1-x11&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3pkg:rpm/suse/dbus-1-x11&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/dbus-1-x11&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/dbus-1-x11&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/dbus-1-x11&distro=SUSE%20Manager%20Proxy%204.2pkg:rpm/suse/dbus-1-x11&distro=SUSE%20Manager%20Server%204.2
< 1:1.12.8-24.el8_8.1+ 36 more
- (no CPE)range: < 1:1.12.8-24.el8_8.1
- (no CPE)range: < 1:1.12.8-24.el8_8.1
- (no CPE)range: < 1:1.12.8-24.el8_8.1
- (no CPE)range: < 1:1.12.8-24.el8_8.1
- (no CPE)range: < 1:1.12.8-24.el8_8.1
- (no CPE)range: < 1:1.12.8-24.el8_8.1
- (no CPE)range: < 1:1.12.8-24.el8_8.1
- (no CPE)range: < 1.12.2-150400.18.8.1
- (no CPE)range: < 1.12.2-150400.18.8.1
- (no CPE)range: < 1.12.2-150400.18.8.1
- (no CPE)range: < 1.14.8-1.1
- (no CPE)range: < 1.12.2-150400.18.8.1
- (no CPE)range: < 1.12.2-150400.18.8.1
- (no CPE)range: < 1.12.2-150400.18.8.1
- (no CPE)range: < 1.12.2-150100.8.17.1
- (no CPE)range: < 1.12.2-150100.8.17.1
- (no CPE)range: < 1.12.2-150400.18.8.1
- (no CPE)range: < 1.12.2-150400.18.8.1
- (no CPE)range: < 1.12.2-150400.18.8.1
- (no CPE)range: < 1.12.2-150400.18.8.1
- (no CPE)range: < 1.12.2-150100.8.17.1
- (no CPE)range: < 1.8.22-44.1
- (no CPE)range: < 1.8.22-44.1
- (no CPE)range: < 1.8.22-44.1
- (no CPE)range: < 1.12.2-150100.8.17.1
- (no CPE)range: < 1.12.2-150100.8.17.1
- (no CPE)range: < 1.12.2-150100.8.17.1
- (no CPE)range: < 1.12.2-150400.18.8.1
- (no CPE)range: < 1.12.2-150400.18.8.1
- (no CPE)range: < 1.12.2-150400.18.8.1
- (no CPE)range: < 1.12.2-150400.18.8.1
- (no CPE)range: < 1.12.2-150100.8.17.1
- (no CPE)range: < 1.8.22-44.1
- (no CPE)range: < 1.8.22-44.1
- (no CPE)range: < 1.8.22-44.1
- (no CPE)range: < 1.12.2-150100.8.17.1
- (no CPE)range: < 1.12.2-150100.8.17.1
Patches
Vulnerability mechanics
References
4- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BZYCDRMD7B4XO4HF6C6YTLH4YUD7TANP/mitrevendor-advisory
- lists.debian.org/debian-lts-announce/2023/10/msg00033.htmlmitremailing-list
- gitlab.freedesktop.org/dbus/dbus/-/issues/457mitre
- security.netapp.com/advisory/ntap-20231208-0007/mitre
News mentions
0No linked articles in our index yet.