suse · CVE-2008-3834

Quick triage

Priority: medium Published: 2021-05-30 12:43:41 UTC Updated: 2026-04-18 20:25:54 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2008-3834 severity moderate: SUSE including 41 source package names (dbus-1-1.12.20-5.5, dbus-1-1.14.10-1.11, …), 41 product×package rows across 9 product lines (SUSE Linux Enterprise Server 11 SP1, SUSE Linux Enterprise Server 11 SP2, … (9 product lines)): Fixed 41.

Description:

The dbus_signature_validate function in the D-bus library (libdbus) before 1.2.4 allows remote attackers to cause a denial of service (application abort) via a message containing a malformed signature, which triggers a failed assertion error.

cvelogic Threat Intelligence