CVE-2020-35512: Use After Free
First published: Fri Dec 18 2020(Updated: )
A use-after-free flaw was found in D-Bus Development branch <= 1.13.16, dbus-1.12.x stable branch <= 1.12.18, and dbus-1.10.x and older branches <= 1.10.30 when a system has multiple usernames sharing the same UID. When a set of policy rules references these usernames, D-Bus may free some memory in the heap, which is still used by data structures necessary for the other usernames sharing the UID, possibly leading to a crash or other undefined behaviors
Credit: secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| D-bus Project D-bus | =1.12.20 | |
| Linux Linux kernel | ||
| All of | ||
| Freedesktop Dbus | =1.12.20 | |
| Linux Linux kernel | ||
| redhat/dbus | <1.10.32 | 1.10.32 |
| redhat/dbus | <1.12.20 | 1.12.20 |
| redhat/dbus | <1.13.18 | 1.13.18 |
| debian/dbus | 1.12.28-0+deb11u1 1.12.24-0+deb11u1 1.14.10-1~deb12u1 1.14.10-6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugs.gentoo.org/755392
- https://bugzilla.redhat.com/show_bug.cgi?id=1909101
- https://gitlab.freedesktop.org/dbus/dbus/-/issues/305#note_829128
- https://security-tracker.debian.org/tracker/CVE-2020-35512
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1909102
- https://gitlab.freedesktop.org/dbus/dbus/-/issues/305
- https://gitlab.freedesktop.org/dbus/dbus/-/commit/e75c67a28fa2bc41a8ab0de433a52355c71a8abf
- https://gitlab.freedesktop.org/dbus/dbus/-/commit/2b7948ef907669e844b52c4fa2268d6e3162a70c
- https://gitlab.freedesktop.org/dbus/dbus/-/commit/f3b2574f0c9faa32a59efec905921f7ef4438a60
- https://gitlab.freedesktop.org/dbus/dbus/-/commit/dc94fe3d31adf72259adc31f343537151a6c0bdd
Frequently Asked Questions
What is CVE-2020-35512?
CVE-2020-35512 is a use-after-free vulnerability found in D-Bus that allows an attacker to execute arbitrary code or cause a denial of service.
What is the severity of CVE-2020-35512?
The severity of CVE-2020-35512 is high with a CVSS score of 7.8.
Which versions of D-Bus are affected by CVE-2020-35512?
D-Bus Development branch <= 1.13.16, dbus-1.12.x stable branch <= 1.12.18, and dbus-1.10.x and older branches <= 1.10.30 are affected by CVE-2020-35512.
How can an attacker exploit CVE-2020-35512?
An attacker can exploit CVE-2020-35512 by leveraging the use-after-free flaw to execute arbitrary code or perform a denial of service attack.
What is the recommended remedy for CVE-2020-35512?
The recommended remedy for CVE-2020-35512 is to update D-Bus to version 1.12.20 or higher, or 1.10.32 for older branches.
- collector/nvd-index
- agent/type
- agent/first-publish-date
- agent/author
- agent/references
- agent/severity
- agent/weakness
- agent/description
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2020-35512
- collector/mitre-cve
- source/MITRE
- collector/security-tracker-debian
- source/Debian
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/event
- vendor/d-bus project
- canonical/d-bus project d-bus
- version/d-bus project d-bus/1.12.20
- vendor/linux
- canonical/linux linux kernel
- vendor/freedesktop
- canonical/freedesktop dbus
- version/freedesktop dbus/1.12.20
- package-manager/redhat
- package-manager/debian