CVE-2022-42010 D-Bus before 1.12.24, 1.13.x and 1.14.4, and 1.15.x before 1.15.2 has an issue.

This issue does not affect Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. D-Bus before 1.14.4 is not affected by this issue as Red Hat has released D-Bus 1.14.4 and later. An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. D-Bus does not validate the type of messages it receives and may accept messages with invalid typing information. This could lead to dbus-daemon crashing when receiving such messages. An attacker on the local network could send a specially crafted message with an invalid type to dbus, which could cause dbus-daemon to crash when parsing the message. An attacker could also send messages with invalid typing information to other programs that use libdbus, which could potentially crash those programs. An attacker could leverage this issue to execute arbitrary code as root.

CVE-2023-42011

This issue does not affect Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7.
An issue was discovered in the Client Shims for X.Org before 1.15.
X.org does not properly validate the return value of a function call before using it for input validation in the X server, which could result in a NULL pointer dereference and allow attackers to crash the X server or execute arbitrary code as root.

References:

- CVE-2022-42010
An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. D-Bus does not validate the type of messages it receives and may accept messages with invalid typing information that could lead to dbus-daemon crashing when receiving such messages from an attacker on the local network or sending them to other programs that use libdbus, which could potentially crash those programs

Solution:

D-Bus 1.14.4, 1.15.2
D-Bus version 1.14.4 and later are not vulnerable to the D-Bus crash issue (CVE-2022-42010). Treating this issue as a vulnerability, Red Hat released updates for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7 to address the issue.

Timeline

Published on: 10/10/2022 00:15:00 UTC
Last modified on: 11/14/2022 15:16:00 UTC

References