CVE-2022-42010 Information

Description

An issue was discovered in D-Bus before 1.12.24 1.13.x and 1.14.x before 1.14.4 and 1.15.x before 1.15.2. An authenticated attacker can cause dbus-daemon and other programs that use libdbus to crash when receiving a message with certain invalid type signatures.

Reference

https://www.openwall.com/lists/oss-security/2022/10/06/1 https://gitlab.freedesktop.org/dbus/dbus/-/issues/418