Security update for dbus-broker
This update for dbus-broker fixes the following issues:
- CVE-2022-31212: Fix a stack buffer over-read in bundled c-shquote (boo#1200332)
- CVE-2022-31213: Fix a NULL pointer dereferences in bundled c-shquote (boo#1200333)
-
Submitted by
Simon Lees (simotek)
Fixed bugs
bnc#1200332
VUL-0: CVE-2022-31212: dbus-broker: a stack buffer over-read if a malicious Exec line is supplied
bnc#1200333
VUL-0: CVE-2022-31213: dbus-broker: null pointer reference when supplying a malformed XML config file
