Mandriva Linux Security Advisory : dbus (MDVSA-2013:070)
Medium Nessus Plugin ID 66084
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionUpdated dbus packages fix security vulnerability :
It was discovered that the D-Bus library honored environment settings even when running with elevated privileges. A local attacker could possibly use this flaw to escalate their privileges, by setting specific environment variables before running a setuid or setgid application linked against the D-Bus library (libdbus) (CVE-2012-3524).
SolutionUpdate the affected packages.