Red Hat Product Errata RHSA-2020:2894 - Security Advisory

Issued:: 2020-07-13
Updated:: 2020-07-13

RHSA-2020:2894 - Security Advisory

Overview
Updated Packages

Synopsis

Important: dbus security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for dbus is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

D-Bus is a system for sending messages between applications. It is used both for the system-wide message bus service, and as a per-user-login-session messaging facility.

Security Fix(es):

dbus: denial of service via file descriptor leak (CVE-2020-12049)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

For the update to take effect, all running instances of dbus-daemon and all running applications using the libdbus library must be restarted, or the system rebooted.

Affected Products

Red Hat Enterprise Linux Server 7 x86_64
Red Hat Enterprise Linux Workstation 7 x86_64
Red Hat Enterprise Linux Desktop 7 x86_64
Red Hat Enterprise Linux for IBM z Systems 7 s390x
Red Hat Enterprise Linux for Power, big endian 7 ppc64
Red Hat Enterprise Linux for Scientific Computing 7 x86_64
Red Hat Enterprise Linux for Power, little endian 7 ppc64le

Fixes

BZ - 1849041 - CVE-2020-12049 dbus: denial of service via file descriptor leak

CVEs

CVE-2020-12049

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server 7

SRPM
dbus-1.10.24-14.el7_8.src.rpm	SHA-256: a58a64da9a74f0ff632748f3d7fb52137a3141a512a9198c89ded4517a1565ec
x86_64
dbus-1.10.24-14.el7_8.x86_64.rpm	SHA-256: d81e2c59f8048af2905284a0e24d3d5d1dba2022866f1a4a360723d507d8c4aa
dbus-debuginfo-1.10.24-14.el7_8.i686.rpm	SHA-256: 03d505e899f0036a78e715703848be8ee1ed4478e15a0a246e2aa5e1b9d81a2a
dbus-debuginfo-1.10.24-14.el7_8.x86_64.rpm	SHA-256: 1af37324b68c05f03e1b98d8c32893d275cd5b276507dc8b33ad35c2c7ebcf4b
dbus-debuginfo-1.10.24-14.el7_8.x86_64.rpm	SHA-256: 1af37324b68c05f03e1b98d8c32893d275cd5b276507dc8b33ad35c2c7ebcf4b
dbus-devel-1.10.24-14.el7_8.i686.rpm	SHA-256: f3b3f7381173c6fe63a7e346eee84ee653140713742845cb4bce97c5c03fc52f
dbus-devel-1.10.24-14.el7_8.x86_64.rpm	SHA-256: 33555243c811c77bb28bb9105cdbd023c50d35264e4366e5c8374e483a949529
dbus-doc-1.10.24-14.el7_8.noarch.rpm	SHA-256: 78eda968c6bde9a15c26e6d316d4b8e18a484f53e21c87727ad5a3d81903b152
dbus-libs-1.10.24-14.el7_8.i686.rpm	SHA-256: deff3069774c27df0dbd9bc5d7e174cafbb2343a17190729dc9fbd08ce979ae1
dbus-libs-1.10.24-14.el7_8.x86_64.rpm	SHA-256: fe9610f34c5cb004a7b40a04b78365962d2aa8dfe5acfb28f3ab3472cb2f14f1
dbus-tests-1.10.24-14.el7_8.x86_64.rpm	SHA-256: 2716da588db7cc2e933531701ed424f127bd11479e56cbc8707432f99a050690
dbus-x11-1.10.24-14.el7_8.x86_64.rpm	SHA-256: b49cc7f9b749ddd351c3664853819ce67cf68e3d27433d4bbdfc4b01f3f61df5

Red Hat Enterprise Linux Workstation 7

SRPM
dbus-1.10.24-14.el7_8.src.rpm	SHA-256: a58a64da9a74f0ff632748f3d7fb52137a3141a512a9198c89ded4517a1565ec
x86_64
dbus-1.10.24-14.el7_8.x86_64.rpm	SHA-256: d81e2c59f8048af2905284a0e24d3d5d1dba2022866f1a4a360723d507d8c4aa
dbus-debuginfo-1.10.24-14.el7_8.i686.rpm	SHA-256: 03d505e899f0036a78e715703848be8ee1ed4478e15a0a246e2aa5e1b9d81a2a
dbus-debuginfo-1.10.24-14.el7_8.x86_64.rpm	SHA-256: 1af37324b68c05f03e1b98d8c32893d275cd5b276507dc8b33ad35c2c7ebcf4b
dbus-debuginfo-1.10.24-14.el7_8.x86_64.rpm	SHA-256: 1af37324b68c05f03e1b98d8c32893d275cd5b276507dc8b33ad35c2c7ebcf4b
dbus-devel-1.10.24-14.el7_8.i686.rpm	SHA-256: f3b3f7381173c6fe63a7e346eee84ee653140713742845cb4bce97c5c03fc52f
dbus-devel-1.10.24-14.el7_8.x86_64.rpm	SHA-256: 33555243c811c77bb28bb9105cdbd023c50d35264e4366e5c8374e483a949529
dbus-doc-1.10.24-14.el7_8.noarch.rpm	SHA-256: 78eda968c6bde9a15c26e6d316d4b8e18a484f53e21c87727ad5a3d81903b152
dbus-libs-1.10.24-14.el7_8.i686.rpm	SHA-256: deff3069774c27df0dbd9bc5d7e174cafbb2343a17190729dc9fbd08ce979ae1
dbus-libs-1.10.24-14.el7_8.x86_64.rpm	SHA-256: fe9610f34c5cb004a7b40a04b78365962d2aa8dfe5acfb28f3ab3472cb2f14f1
dbus-tests-1.10.24-14.el7_8.x86_64.rpm	SHA-256: 2716da588db7cc2e933531701ed424f127bd11479e56cbc8707432f99a050690
dbus-x11-1.10.24-14.el7_8.x86_64.rpm	SHA-256: b49cc7f9b749ddd351c3664853819ce67cf68e3d27433d4bbdfc4b01f3f61df5

Red Hat Enterprise Linux Desktop 7

SRPM
dbus-1.10.24-14.el7_8.src.rpm	SHA-256: a58a64da9a74f0ff632748f3d7fb52137a3141a512a9198c89ded4517a1565ec
x86_64
dbus-1.10.24-14.el7_8.x86_64.rpm	SHA-256: d81e2c59f8048af2905284a0e24d3d5d1dba2022866f1a4a360723d507d8c4aa
dbus-debuginfo-1.10.24-14.el7_8.i686.rpm	SHA-256: 03d505e899f0036a78e715703848be8ee1ed4478e15a0a246e2aa5e1b9d81a2a
dbus-debuginfo-1.10.24-14.el7_8.i686.rpm	SHA-256: 03d505e899f0036a78e715703848be8ee1ed4478e15a0a246e2aa5e1b9d81a2a
dbus-debuginfo-1.10.24-14.el7_8.x86_64.rpm	SHA-256: 1af37324b68c05f03e1b98d8c32893d275cd5b276507dc8b33ad35c2c7ebcf4b
dbus-debuginfo-1.10.24-14.el7_8.x86_64.rpm	SHA-256: 1af37324b68c05f03e1b98d8c32893d275cd5b276507dc8b33ad35c2c7ebcf4b
dbus-devel-1.10.24-14.el7_8.i686.rpm	SHA-256: f3b3f7381173c6fe63a7e346eee84ee653140713742845cb4bce97c5c03fc52f
dbus-devel-1.10.24-14.el7_8.x86_64.rpm	SHA-256: 33555243c811c77bb28bb9105cdbd023c50d35264e4366e5c8374e483a949529
dbus-doc-1.10.24-14.el7_8.noarch.rpm	SHA-256: 78eda968c6bde9a15c26e6d316d4b8e18a484f53e21c87727ad5a3d81903b152
dbus-libs-1.10.24-14.el7_8.i686.rpm	SHA-256: deff3069774c27df0dbd9bc5d7e174cafbb2343a17190729dc9fbd08ce979ae1
dbus-libs-1.10.24-14.el7_8.x86_64.rpm	SHA-256: fe9610f34c5cb004a7b40a04b78365962d2aa8dfe5acfb28f3ab3472cb2f14f1
dbus-tests-1.10.24-14.el7_8.x86_64.rpm	SHA-256: 2716da588db7cc2e933531701ed424f127bd11479e56cbc8707432f99a050690
dbus-x11-1.10.24-14.el7_8.x86_64.rpm	SHA-256: b49cc7f9b749ddd351c3664853819ce67cf68e3d27433d4bbdfc4b01f3f61df5

Red Hat Enterprise Linux for IBM z Systems 7

SRPM
dbus-1.10.24-14.el7_8.src.rpm	SHA-256: a58a64da9a74f0ff632748f3d7fb52137a3141a512a9198c89ded4517a1565ec
s390x
dbus-1.10.24-14.el7_8.s390x.rpm	SHA-256: cea89b5614703c71ab508208e81c8d3258600d03da0eb7fe9e44e1cfdb47beee
dbus-debuginfo-1.10.24-14.el7_8.s390.rpm	SHA-256: c8dde2e52bd1c946afbd19f559ea16b0ff3f3bf5459f4742adf3a1b467059e95
dbus-debuginfo-1.10.24-14.el7_8.s390x.rpm	SHA-256: 384014a143377827baecf3aa966961116832ac885c557a3a9a553f9662954601
dbus-debuginfo-1.10.24-14.el7_8.s390x.rpm	SHA-256: 384014a143377827baecf3aa966961116832ac885c557a3a9a553f9662954601
dbus-devel-1.10.24-14.el7_8.s390.rpm	SHA-256: 08fa9a42acc73aab06c09e3bb7282e922f59a52781c85f825d01d48349900b53
dbus-devel-1.10.24-14.el7_8.s390x.rpm	SHA-256: 3d4fcebb9c25d2e9c0660c440a1e30e0bb4841515f61a7957f455737c5daf9b8
dbus-doc-1.10.24-14.el7_8.noarch.rpm	SHA-256: 78eda968c6bde9a15c26e6d316d4b8e18a484f53e21c87727ad5a3d81903b152
dbus-libs-1.10.24-14.el7_8.s390.rpm	SHA-256: 0aa7a02ff25563ec98c775ecef7b4a59df7eee6bcdcf14c026a07a65a93de384
dbus-libs-1.10.24-14.el7_8.s390x.rpm	SHA-256: 9908f4f832dfea476c4f29bcc17e29c2d13d5d8ffadd5c20c75146637576d19a
dbus-tests-1.10.24-14.el7_8.s390x.rpm	SHA-256: 098423e9a08a763cc299a7c662021bfd2d40afd51a05aa295d5f924b6e979fbc
dbus-x11-1.10.24-14.el7_8.s390x.rpm	SHA-256: 8160bae0ee73cb30a499bef37d185ae53981e60f952ca011e7a751f0f4a6c93c

Red Hat Enterprise Linux for Power, big endian 7

SRPM
dbus-1.10.24-14.el7_8.src.rpm	SHA-256: a58a64da9a74f0ff632748f3d7fb52137a3141a512a9198c89ded4517a1565ec
ppc64
dbus-1.10.24-14.el7_8.ppc64.rpm	SHA-256: 1cd601cdbb0e71183abf5a42c533138ebf8bb9ee8a0055e175445d6ac47f97ef
dbus-debuginfo-1.10.24-14.el7_8.ppc.rpm	SHA-256: ccac77d68f2cb095ee67392dda4a1c20323782ce05449b2a3312d7288f02f006
dbus-debuginfo-1.10.24-14.el7_8.ppc64.rpm	SHA-256: a0e1b64749dac4069a63c19f8a320d530390d4070497bbd506914b843d819788
dbus-debuginfo-1.10.24-14.el7_8.ppc64.rpm	SHA-256: a0e1b64749dac4069a63c19f8a320d530390d4070497bbd506914b843d819788
dbus-devel-1.10.24-14.el7_8.ppc.rpm	SHA-256: 52f091119f6d658cf20f05c32a6aabd0867e87d47c4530b265ef89c01ae43fb3
dbus-devel-1.10.24-14.el7_8.ppc64.rpm	SHA-256: 6123f5a6837b1f426e72bcd0eef406d6dd572d5331feefae719796ca6cd3f23f
dbus-doc-1.10.24-14.el7_8.noarch.rpm	SHA-256: 78eda968c6bde9a15c26e6d316d4b8e18a484f53e21c87727ad5a3d81903b152
dbus-libs-1.10.24-14.el7_8.ppc.rpm	SHA-256: eb1991895479bbc09d04df7ff82d8fb63e8ec634e4b632893d0065a37e87a5d7
dbus-libs-1.10.24-14.el7_8.ppc64.rpm	SHA-256: abeb237bfc0f0bb59ed81c1328e6dded7b2a54e7445ce54fe41a13f8ec5a37df
dbus-tests-1.10.24-14.el7_8.ppc64.rpm	SHA-256: aa68d5e43d6b8aaadba0e30c32f37eed9bb1843ec11e409d2f6f7962de7684bc
dbus-x11-1.10.24-14.el7_8.ppc64.rpm	SHA-256: 97c782008ce4eb8fb21ae641d07e7f04800c6c13ef1fbf35265c54a91f895f86

Red Hat Enterprise Linux for Scientific Computing 7

SRPM
dbus-1.10.24-14.el7_8.src.rpm	SHA-256: a58a64da9a74f0ff632748f3d7fb52137a3141a512a9198c89ded4517a1565ec
x86_64
dbus-1.10.24-14.el7_8.x86_64.rpm	SHA-256: d81e2c59f8048af2905284a0e24d3d5d1dba2022866f1a4a360723d507d8c4aa
dbus-debuginfo-1.10.24-14.el7_8.i686.rpm	SHA-256: 03d505e899f0036a78e715703848be8ee1ed4478e15a0a246e2aa5e1b9d81a2a
dbus-debuginfo-1.10.24-14.el7_8.i686.rpm	SHA-256: 03d505e899f0036a78e715703848be8ee1ed4478e15a0a246e2aa5e1b9d81a2a
dbus-debuginfo-1.10.24-14.el7_8.x86_64.rpm	SHA-256: 1af37324b68c05f03e1b98d8c32893d275cd5b276507dc8b33ad35c2c7ebcf4b
dbus-debuginfo-1.10.24-14.el7_8.x86_64.rpm	SHA-256: 1af37324b68c05f03e1b98d8c32893d275cd5b276507dc8b33ad35c2c7ebcf4b
dbus-devel-1.10.24-14.el7_8.i686.rpm	SHA-256: f3b3f7381173c6fe63a7e346eee84ee653140713742845cb4bce97c5c03fc52f
dbus-devel-1.10.24-14.el7_8.x86_64.rpm	SHA-256: 33555243c811c77bb28bb9105cdbd023c50d35264e4366e5c8374e483a949529
dbus-doc-1.10.24-14.el7_8.noarch.rpm	SHA-256: 78eda968c6bde9a15c26e6d316d4b8e18a484f53e21c87727ad5a3d81903b152
dbus-libs-1.10.24-14.el7_8.i686.rpm	SHA-256: deff3069774c27df0dbd9bc5d7e174cafbb2343a17190729dc9fbd08ce979ae1
dbus-libs-1.10.24-14.el7_8.x86_64.rpm	SHA-256: fe9610f34c5cb004a7b40a04b78365962d2aa8dfe5acfb28f3ab3472cb2f14f1
dbus-tests-1.10.24-14.el7_8.x86_64.rpm	SHA-256: 2716da588db7cc2e933531701ed424f127bd11479e56cbc8707432f99a050690
dbus-x11-1.10.24-14.el7_8.x86_64.rpm	SHA-256: b49cc7f9b749ddd351c3664853819ce67cf68e3d27433d4bbdfc4b01f3f61df5

Red Hat Enterprise Linux for Power, little endian 7

SRPM
dbus-1.10.24-14.el7_8.src.rpm	SHA-256: a58a64da9a74f0ff632748f3d7fb52137a3141a512a9198c89ded4517a1565ec
ppc64le
dbus-1.10.24-14.el7_8.ppc64le.rpm	SHA-256: dcfcd479fa63019241c0eca2087c56e6b70911b548b49442efb2b788d951fbe6
dbus-debuginfo-1.10.24-14.el7_8.ppc64le.rpm	SHA-256: ab5655d6a853b519c4bba09003d62c34a55364de71994187d41998378485de03
dbus-debuginfo-1.10.24-14.el7_8.ppc64le.rpm	SHA-256: ab5655d6a853b519c4bba09003d62c34a55364de71994187d41998378485de03
dbus-devel-1.10.24-14.el7_8.ppc64le.rpm	SHA-256: ed51773ca3d7aefcb394c434ee0f2d9a61a3b40a6b94e37e832f2ab4081d2627
dbus-doc-1.10.24-14.el7_8.noarch.rpm	SHA-256: 78eda968c6bde9a15c26e6d316d4b8e18a484f53e21c87727ad5a3d81903b152
dbus-libs-1.10.24-14.el7_8.ppc64le.rpm	SHA-256: 44e334ef6d0bc9c9749bfcdb0b162bab2fc381492c81d927937f1c1d941009c5
dbus-tests-1.10.24-14.el7_8.ppc64le.rpm	SHA-256: 94ad23168fb9e1772fa0ce1c38fe1975c7633e3405c3df53b2f1c43560474de5
dbus-x11-1.10.24-14.el7_8.ppc64le.rpm	SHA-256: a5ffc13d1956ab3774262ace7afbf9069c2b5cf5eb6fefccb3b64c4c12448019

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation

Services

Tools

Red Hat Insights

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories