CVE-2014-3637

D-Bus 1.3.0 through 1.6.x before 1.6.24 and 1.8.x before 1.8.8 does not properly close connections for processes that have terminated, which allows local users to cause a denial of service via a D-bus message containing a D-Bus connection file descriptor.

Date published : 2014-09-22

http://advisories.mageia.org/MGASA-2014-0395.html

https://bugs.freedesktop.org/show_bug.cgi?id=80559