Back

Ubuntu xdg-dbus-proxy Vulnerability Exposes Sensitive Information

Severity: Medium (Score: 57.9)

Sources: Linuxsecurity, Ubuntu

Summary

A security vulnerability in xdg-dbus-proxy affects Ubuntu 25.10, 24.04 LTS, and 22.04 LTS. Discovered on April 7, 2026, the flaw allows local attackers to intercept D-Bus messages due to improper handling of eavesdropping in policy rules. This could lead to the exposure of sensitive information. Users are advised to update their systems to specific package versions to mitigate the risk. The affected versions are xdg-dbus-proxy 0.1.6-1ubuntu0.1 for Ubuntu 25.10, 0.1.5-1ubuntu0.2 for 24.04 LTS, and 0.1.3-1ubuntu0.1 for 22.04 LTS. A session restart is required after the update to apply changes. The vulnerability is tracked as CVE-2026-34080. Key Points: • Vulnerability in xdg-dbus-proxy affects multiple Ubuntu versions. • Local attackers can exploit the flaw to intercept sensitive D-Bus messages. • Users must update to specific package versions and restart their sessions.

Key Entities

  • CVE-2026-34080 (cve)
  • D-Bus (platform)
  • Xdg-dbus-proxy (platform)
  • Ubuntu (company)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed