USN-8167-1
Unknown
USN-8167-1: xdg-dbus-proxy vulnerability
Canonical (Ubuntu)
Released: April 13, 2026
Updated: April 14, 2026
Restart Required
Description
It was discovered that xdg-dbus-proxy incorrectly handled eavesdropping
in policy rules. A local attacker could possibly use this issue to
intercept certain D-Bus messages.
Fixed Vulnerabilities 1
Apr 07, 2026
xdg-dbus-proxy is a filtering proxy for D-Bus connections. Prior to 0.1.7, a policy parser vulnerability allows bypassing eavesdrop restrictions. The proxy checks for eavesdrop=true in…
Quick Info
Patch ID:
USN-8167-1
Vendor:
Canonical (Ubuntu)
Severity:
Unknown
CVEs Fixed:
1
Restart:
Required
Vendor
Canonical (Ubuntu)Additional Info
action:
usn id:
USN-8167-1
summary:
xdg-dbus-proxy could be made to expose sensitive information.
usn number:
8167-1
instructions:
After a standard system update you need to restart your session to make all
the necessary changes.