Home / mailings [USN-8167-1] xdg-dbus-proxy vulnerability
Posted on 13 April 2026
Ubuntu Security==========================================================================Ubuntu Security Notice USN-8167-1
April 13, 2026
xdg-dbus-proxy vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 25.10
- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS
Summary:
xdg-dbus-proxy could be made to expose sensitive information.
Software Description:
- xdg-dbus-proxy: A filtering proxy for D-Bus connections
Details:
It was discovered that xdg-dbus-proxy incorrectly handled eavesdropping
in policy rules. A local attacker could possibly use this issue to
intercept certain D-Bus messages.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 25.10
xdg-dbus-proxy 0.1.6-1ubuntu0.1
Ubuntu 24.04 LTS
xdg-dbus-proxy 0.1.5-1ubuntu0.2
Ubuntu 22.04 LTS
xdg-dbus-proxy 0.1.3-1ubuntu0.1
After a standard system update you need to restart your session to make all
the necessary changes.
References:
https://ubuntu.com/security/notices/USN-8167-1
CVE-2026-34080
Package Information:
https://launchpad.net/ubuntu/+source/xdg-dbus-proxy/0.1.6-1ubuntu0.1
https://launchpad.net/ubuntu/+source/xdg-dbus-proxy/0.1.5-1ubuntu0.2
https://launchpad.net/ubuntu/+source/xdg-dbus-proxy/0.1.3-1ubuntu0.1
--===============5763564293937051521==Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
