TmdsDBus (D-Bus for NET), Multiple Vulnerabilities, N/A (High)

Listen to this Post

Tmds.DBus and Tmds.DBus.Protocol are .NET libraries that facilitate D-Bus communication, enabling IPC between applications. A malicious peer on the same D-Bus bus can exploit multiple flaws. First, the attacker can spoof D-Bus signals by impersonating the legitimate owner of a well-known bus name. This breaks signal authenticity and allows arbitrary signal injection. Second, the attacker can send messages containing an excessive number of Unix file descriptors. The library fails to properly limit the number of accepted descriptors, leading to resource exhaustion and file descriptor spillover. This can degrade system performance or cause denial of service. Third, by sending malformed message bodies, the attacker triggers unhandled exceptions on the SynchronizationContext, crashing the application. These vulnerabilities affect all versions prior to 0.92.0 for Tmds.DBus and prior to 0.21.3 for Tmds.DBus.Protocol. The fixes are included in version 0.92.0 and backported to 0.21.3. There are no known workarounds; upgrading is mandatory. The CVSS score is 7.1 (High). The vulnerabilities stem from insufficient input validation, missing bounds checking on file descriptors, and improper exception handling in asynchronous contexts.

dailycve form:

Platform: .NET Tmds.DBus
Version: <0.92.0
Vulnerability: Spoofing, DoS, Crash
Severity: High
date: 2026-04-08

Prediction: Already patched 2026-04-08

Analytics under heading What Undercode Say:

Check installed Tmds.DBus version
dotnet list package | grep Tmds.DBus
Upgrade to patched version
dotnet add package Tmds.DBus --version 0.92.0
dotnet add package Tmds.DBus.Protocol --version 0.21.3
Verify the update
dotnet list package --outdated | grep Tmds.DBus
// Example of a vulnerable connection
using Tmds.DBus;
var connection = Connection.Session;
await connection.ConnectAsync();
// Malicious peer can now exploit the flaws

Exploit:

  1. Gain access to the same D-Bus bus as the target application.
  2. Spoof signals: send crafted D-Bus messages impersonating a well-known name owner.
  3. Exhaust resources: send messages with thousands of Unix file descriptors.
  4. Crash application: send malformed message bodies that trigger unhandled exceptions.

Protection from this CVE

Immediately upgrade to Tmds.DBus version 0.92.0 or Tmds.DBus.Protocol version 0.21.3. No workarounds exist. Validate all incoming D-Bus messages and enforce strict file descriptor limits.

Impact

Denial of service, resource exhaustion (file descriptor spillover), application crashes, and loss of signal authenticity. A successful attack can render the application unresponsive or cause it to terminate unexpectedly.

🎯Let’s Practice Exploiting & Learn Patching For Free:

Sources:

Reported By: github.com
Extra Source Hub:
Undercode

🔐JOIN OUR CYBER WORLD [ CVE News • HackMonitor • UndercodeNews ]

💬 Whatsapp | 💬 Telegram

📢 Follow DailyCVE & Stay Tuned:

𝕏 formerly Twitter 🐦 | @ Threads | 🔗 Linkedin Featured Image

Scroll to Top