Dbus-Broker Project: Security Vulnerabilities
An issue was discovered in dbus-broker before 31. Multiple NULL pointer dereferences can be found when supplying a malformed XML config file.
CVSS Score
7.5
EPSS Score
0.002
Published
2022-07-17
An issue was discovered in dbus-broker before 31. It depends on c-uitl/c-shquote to parse the DBus service's Exec line. c-shquote contains a stack-based buffer over-read if a malicious Exec line is supplied.
CVSS Score
7.5
EPSS Score
0.002
Published
2022-07-17