Detections
Analytics
Alibaba Cloud Linux 3 : 0097: dbus (ALINUX3-SA-2022:0097)
high Nessus Plugin ID 236444
Synopsis
The remote Alibaba Cloud Linux host is missing one or more security updates.Description
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2022:0097 advisory.Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities:
CVE-2019-12749:
dbus before 1.10.28, 1.12.x before 1.12.16, and 1.13.x before 1.13.12, as used in DBusServer in Canonical Upstart in Ubuntu 14.04 (and in some, less common, uses of dbus-daemon), allows cookie spoofing because of symlink mishandling in the reference implementation of DBUS_COOKIE_SHA1 in the libdbus library. (This only affects the DBUS_COOKIE_SHA1 authentication mechanism.) A malicious client with write access to its own home directory could manipulate a ~/.dbus-keyrings symlink to cause a DBusServer with a different uid to read and write in unintended locations. In the worst case, this could result in the DBusServer reusing a cookie that is known to the malicious client, and treating that cookie as evidence that a subsequent client connection came from an attacker-chosen uid, allowing authentication bypass.
CVE-2020-12049:
An issue was discovered in dbus >= 1.3.0 before 1.12.18. The DBusServer in libdbus, as used in dbus- daemon, leaks file descriptors when a message exceeds the per-message file descriptor limit. A local attacker with access to the D-Bus system bus or another system service's private AF_UNIX socket could use this to make the system service reach its file descriptor limit, denying service to subsequent D-Bus clients.
Tenable has extracted the preceding description block directly from the Alibaba Cloud Linux security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Update the affected packages.See Also
http://mirrors.aliyun.com/alinux/3/cve/alinux3-sa-20220097.xml
Plugin Details
Severity: High
ID: 236444
File Name: alinux3_sa_2022-0097.nasl
Version: 1.1
Type: local
Published: 5/14/2025
Updated: 5/14/2025
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 6.0
CVSS v2
Risk Factor: Low
Base Score: 3.6
Temporal Score: 2.8
Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:N
CVSS Score Source: CVE-2019-12749
CVSS v3
Risk Factor: High
Base Score: 7.1
Temporal Score: 6.4
Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
Vulnerability Information
CPE: cpe:/o:alibabacloud:alibaba_cloud_linux_3, p-cpe:/a:alibabacloud:alibaba_cloud_linux_3:dbus-daemon-debuginfo, p-cpe:/a:alibabacloud:alibaba_cloud_linux_3:dbus-devel, p-cpe:/a:alibabacloud:alibaba_cloud_linux_3:dbus-libs-debuginfo, p-cpe:/a:alibabacloud:alibaba_cloud_linux_3:dbus-tools, p-cpe:/a:alibabacloud:alibaba_cloud_linux_3:dbus-x11, p-cpe:/a:alibabacloud:alibaba_cloud_linux_3:dbus, p-cpe:/a:alibabacloud:alibaba_cloud_linux_3:dbus-common, p-cpe:/a:alibabacloud:alibaba_cloud_linux_3:dbus-tools-debuginfo, p-cpe:/a:alibabacloud:alibaba_cloud_linux_3:dbus-debugsource, p-cpe:/a:alibabacloud:alibaba_cloud_linux_3:dbus-daemon, p-cpe:/a:alibabacloud:alibaba_cloud_linux_3:dbus-x11-debuginfo, p-cpe:/a:alibabacloud:alibaba_cloud_linux_3:dbus-tests, p-cpe:/a:alibabacloud:alibaba_cloud_linux_3:dbus-tests-debuginfo, p-cpe:/a:alibabacloud:alibaba_cloud_linux_3:dbus-libs, p-cpe:/a:alibabacloud:alibaba_cloud_linux_3:dbus-debuginfo
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/Alibaba/release, Host/Alibaba/rpm-list
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 5/28/2021
Vulnerability Publication Date: 6/11/2019
Reference Information
CVE: CVE-2019-12749, CVE-2020-12049