Lintian Reports

E dbus-policy-excessively-broad

All reports of dbus-policy-excessively-broad for the archive. The extended description of this tag is:

The package contains D-Bus policy configuration that matches broad classes of messages. This will cause strange side-effects, is almost certainly unintended, and is a probable security flaw.

For instance,

      <policy user="daemon">
        <allow send_type="method_call"/>
        <allow send_destination="com.example.Bees"/>
      </policy>
    

in any system bus policy file would allow the daemon user to send any method call to any service, including method calls which are meant to be restricted to root-only for security, such as org.freedesktop.systemd1.Manager.StartTransientUnit. (In addition, it allows that user to send any message to the com.example.Bees service.)

The intended policy for that particular example was probably more like

      <policy user="daemon">
        <allow send_type="method_call" send_destination="com.example.Bees"/>
      </policy>
    

which correctly allows method calls to that particular service only.

Refer to http://www.openwall.com/lists/oss-security/2015/01/27/25 for details.

Severity: serious, Certainty: possible

Check: dbus, Type: binary

Evolution of the dbus-policy-excessively-broad Lintian tag over the past 366 days:

The beforementioned graph for the dbus-policy-excessively-broad tag

Emitted (non-overridden): 0, overridden: 2, total: 2

The package names link to the relevant maintainer page and the corresponding report for the source package. The links go to the full maintainer report page, which includes info and experimental tags and overridden tags, rather than the default page that shows only errors and warnings.

geoclue-2.0 2.4.5-1 (binary) overridden