On 29/09/12 15:44, Simon McVittie wrote: > I believe the libdbus part of this CVE affects wheezy and certain unusual > squeeze configurations. The known vectors for privilege escalation are: > > * tell libdbus (explicitly or via it being the session-bus default) to > connect to autolaunch: which results in it exec'ing dbus-launch; > have it not find dbus-launch in its configured ${bindir}; > have it find a malicious dbus-launch substitute in its $PATH > > * tell libdbus to connect to unixexec:something-malicious > > The former is only exploitable if [... dbus-x11 is absent ...]
... and the latter is only exploitable in D-Bus 1.5.something or later, because unixexec is a relatively new feature; so it affects wheezy but not squeeze. S -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org