907975 – (CVE-2023-34969) <sys-apps/dbus-1.15.6[debug]: Crash when assertions are enabled with monitoring connection

Bug 907975 (CVE-2023-34969) - <sys-apps/dbus-1.15.6[debug]: Crash when assertions are enabled with monitoring connection

Summary: <sys-apps/dbus-1.15.6[debug]: Crash when assertions are enabled with monitori...

Status:	RESOLVED FIXED

Alias:	CVE-2023-34969

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal minor (vote)
Assignee:	Gentoo Security

URL:
Whiteboard:	C3 [noglsa]
Keywords:

Depends on:	910512
Blocks:
	Show dependency tree

Reported:	2023-06-07 08:02 UTC by Sam James
Modified:	2024-03-04 12:09 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Sam James archtester

2023-06-07 08:02:04 UTC

+dbus 1.15.6 (2023-06-06)
+========================
+
+Denial-of-service fixes:
+
+• Fix an assertion failure in dbus-daemon when a privileged Monitoring
+  connection (dbus-monitor, busctl monitor, gdbus monitor or similar)
+  is active, and a message from the bus driver cannot be delivered to a
+  client connection due to <deny> rules or outgoing message quota. This
+  is a denial of service if triggered maliciously by a local attacker.
+  (dbus#457; hongjinghao, Simon McVittie)

Comment 1 Larry the Git Cow gentoo-dev

2023-06-07 08:14:20 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=019441ca69cd9026020e0af5b5d4a77e12fcce06

commit 019441ca69cd9026020e0af5b5d4a77e12fcce06
Author:     Sam James <sam@gentoo.org>
AuthorDate: 2023-06-07 07:58:48 +0000
Commit:     Sam James <sam@gentoo.org>
CommitDate: 2023-06-07 08:14:06 +0000

    sys-apps/dbus: add 1.15.6
    
    Bug: https://bugs.gentoo.org/907975
    Signed-off-by: Sam James <sam@gentoo.org>

 sys-apps/dbus/Manifest           |   1 +
 sys-apps/dbus/dbus-1.15.6.ebuild | 302 +++++++++++++++++++++++++++++++++++++++
 2 files changed, 303 insertions(+)

Comment 2 John Helmert III archtester

2023-06-09 03:32:07 UTC

CVE-2023-34969 (https://gitlab.freedesktop.org/dbus/dbus/-/issues/457):

D-Bus before 1.15.6 sometimes allows unprivileged users to crash dbus-daemon. If a privileged user with control over the dbus-daemon is using the org.freedesktop.DBus.Monitoring interface to monitor message bus traffic, then an unprivileged user with the ability to connect to the same dbus-daemon can cause a dbus-daemon crash under some circumstances via an unreplyable message. When done on the well-known system bus, this is a denial-of-service vulnerability. The fixed versions are 1.12.28, 1.14.8, and 1.15.6.

Comment 3 Larry the Git Cow gentoo-dev

2024-03-04 12:08:36 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=68be07f0220457a2544421ff08bf8681c971cd15

commit 68be07f0220457a2544421ff08bf8681c971cd15
Author:     Sam James <sam@gentoo.org>
AuthorDate: 2024-03-04 12:06:58 +0000
Commit:     Sam James <sam@gentoo.org>
CommitDate: 2024-03-04 12:07:14 +0000

    sys-apps/dbus: drop 1.15.4-r1
    
    Bug: https://bugs.gentoo.org/907975
    Signed-off-by: Sam James <sam@gentoo.org>

 sys-apps/dbus/Manifest              |   1 -
 sys-apps/dbus/dbus-1.15.4-r1.ebuild | 300 ------------------------------------
 2 files changed, 301 deletions(-)