{"id":"CVE-2020-35512","details":"A use-after-free flaw was found in D-Bus Development branch \u003c= 1.13.16, dbus-1.12.x stable branch \u003c= 1.12.18, and dbus-1.10.x and older branches \u003c= 1.10.30 when a system has multiple usernames sharing the same UID. When a set of policy rules references these usernames, D-Bus may free some memory in the heap, which is still used by data structures necessary for the other usernames sharing the UID, possibly leading to a crash or other undefined behaviors","modified":"2026-05-18T18:04:23.184128Z","published":"2021-02-15T17:15:12.993Z","related":["SUSE-SU-2021:2211-1","SUSE-SU-2021:2292-1","SUSE-SU-2021:2424-1","SUSE-SU-2021:2590-1","SUSE-SU-2022:2788-1","openSUSE-SU-2021:1056-1","openSUSE-SU-2021:2292-1"],"references":[{"type":"WEB","url":"https://security-tracker.debian.org/tracker/CVE-2020-35512"},{"type":"REPORT","url":"https://bugs.gentoo.org/755392"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1909101"},{"type":"REPORT","url":"https://gitlab.freedesktop.org/dbus/dbus/-/issues/305#note_829128"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://gitlab.freedesktop.org/dbus/dbus","events":[{"introduced":"0"},{"last_affected":"ab88811768f750777d1a8b9d9ab12f13390bfd3a"}],"database_specific":{"extracted_events":[{"introduced":"0"},{"last_affected":"1.12.20"}],"source":"CPE_FIELD","cpe":"cpe:2.3:a:freedesktop:dbus:1.12.20:*:*:*:*:*:*:*"}}],"versions":["dbus-1.12.20","dbus-1.12.18","dbus-1.12.16","dbus-1.12.14","dbus-1.12.12","dbus-1.12.10","dbus-1.12.8","dbus-1.12.6","dbus-1.12.4","dbus-1.12.2","dbus-1.12.0","dbus-1.11.22","dbus-1.11.20","dbus-1.11.18","dbus-1.11.16","dbus-1.11.14","dbus-1.11.12","dbus-1.11.10","dbus-1.11.8","dbus-1.11.6","dbus-1.11.4","dbus-1.11.2","dbus-1.11.0","dbus-1.10.0","dbus-1.9.20","dbus-1.9.18","dbus-1.9.16","dbus-1.9.14","dbus-1.9.12","dbus-1.9.10","dbus-1.9.8","dbus-1.9.4","dbus-1.9.2","dbus-1.9.0","dbus-1.8.0","dbus-1.7.10","dbus-1.7.8","dbus-1.7.6","dbus-1.7.4","dbus-1.7.2","dbus-1.7.0","dbus-1.6.0","dbus-1.5.12","dbus-1.5.10","dbus-1.5.8","dbus-1.5.6","dbus-1.5.4","dbus-1.5.2","dbus-1.5.0","dbus-1.4.6","dbus-1.4.4","dbus-0.22","dbus-1.4.1","dbus-1.4.0","dbus-1.3.1","dbus-1.3.0","dbus-1.2.1","dbus-1.1.20","dbus-1.1.4","dbus-1.1.3","dbus-1.1.2","dbus-1.1.0","dbus-1.0.0","dbus-0.95","dbus-0.94","dbus-0.93","dbus-0.92","dbus-0.91","dbus-0.90","dbus-0.62","dbus-0.61","dbus-0.60","dbus-0.50","dbus-0.36","dbus-0.35","dbus-0.34.0","dbus-0.33.0","dbus-0.32.0","dbus-0.31.0","dbus-0.23","dbus-0.21","dbus-0.20","dbus-before-object-names-merge","dbus-0.13","dbus-0.12","dbus-object-names-branchpoint","dbus-0.11","dbus-0.10","dbus-0.9","dbus-0.8","dbus-0.7","dbus-0.6","dbus-0.5","dbus-0.4","dbus-0.3","dbus-0.2","dbus-0.1"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-35512.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}