Solution Run 'dnf update dbus -releasever=200222 ' to update your system. (CVE-2022-42012) Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. An authenticated attacker can cause dbus-daemon and other programs that use libdbus to crash by sending a message with attached file descriptors in an unexpected format. An authenticated attacker can cause dbus-daemon and other programs that use libdbus to crash when receiving a message where an array length is inconsistent with the size of the element type. An authenticated attacker can cause dbus-daemon and other programs that use libdbus to crash when receiving a message with certain invalid type signatures. Description It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-100 advisory.
Synopsis The remote Amazon Linux 2023 host is missing a security update.
0 kommentar(er)
