{"url":"http://public2.vulnerablecode.io/api/packages/92576?format=json","purl":"pkg:deb/debian/dbus@1.8.6-1?distro=trixie","type":"deb","namespace":"debian","name":"dbus","version":"1.8.6-1","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"1.8.8-1","latest_non_vulnerable_version":"1.16.2-5","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/65864?format=json","vulnerability_id":"VCID-sm1d-3abg-x7es","summary":"dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6 allows local users to cause a denial of service (disconnect) via a certain sequence of crafted messages that cause the dbus-daemon to forward a message containing an invalid file descriptor.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3533.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3533.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3533","reference_id":"","reference_type":"","scores":[{"value":"0.00089","scoring_system":"epss","scoring_elements":"0.25382","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00089","scoring_system":"epss","scoring_elements":"0.25479","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00089","scoring_system":"epss","scoring_elements":"0.25464","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00089","scoring_system":"epss","scoring_elements":"0.25417","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00089","scoring_system":"epss","scoring_elements":"0.25359","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00089","scoring_system":"epss","scoring_elements":"0.25369","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3533"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3477","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3477"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3533"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1114416","reference_id":"1114416","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1114416"},{"reference_url":"https://security.gentoo.org/glsa/201412-12","reference_id":"GLSA-201412-12","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201412-12"},{"reference_url":"https://usn.ubuntu.com/2275-1/","reference_id":"USN-2275-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2275-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/92576?format=json","purl":"pkg:deb/debian/dbus@1.8.6-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.8.6-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/92562?format=json","purl":"pkg:deb/debian/dbus@1.12.28-0%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.12.28-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/92560?format=json","purl":"pkg:deb/debian/dbus@1.14.10-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.14.10-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/92564?format=json","purl":"pkg:deb/debian/dbus@1.16.2-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.16.2-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/92563?format=json","purl":"pkg:deb/debian/dbus@1.16.2-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.16.2-5%3Fdistro=trixie"}],"aliases":["CVE-2014-3533"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-sm1d-3abg-x7es"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/65863?format=json","vulnerability_id":"VCID-t8xu-6ncf-que3","summary":"dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6, when running on Linux 2.6.37-rc4 or later, allows local users to cause a denial of service (system-bus disconnect of other services or applications) by sending a message containing a file descriptor, then exceeding the maximum recursion depth before the initial message is forwarded.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3532.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3532.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3532","reference_id":"","reference_type":"","scores":[{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.3093","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.30996","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.30964","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.30898","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.30919","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3477","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3477"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3532","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3532"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3533","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3533"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1114414","reference_id":"1114414","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1114414"},{"reference_url":"https://security.gentoo.org/glsa/201412-12","reference_id":"GLSA-201412-12","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201412-12"},{"reference_url":"https://usn.ubuntu.com/2275-1/","reference_id":"USN-2275-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2275-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/92576?format=json","purl":"pkg:deb/debian/dbus@1.8.6-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.8.6-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/92562?format=json","purl":"pkg:deb/debian/dbus@1.12.28-0%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.12.28-0%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/92560?format=json","purl":"pkg:deb/debian/dbus@1.14.10-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.14.10-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/92564?format=json","purl":"pkg:deb/debian/dbus@1.16.2-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.16.2-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/92563?format=json","purl":"pkg:deb/debian/dbus@1.16.2-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.16.2-5%3Fdistro=trixie"}],"aliases":["CVE-2014-3532"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-t8xu-6ncf-que3"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dbus@1.8.6-1%3Fdistro=trixie"}