It was found that the patch to fix CVE-2008-3834 in dbus was incorrect and as a result the flaw was never properly fixed (remote denial of service vulnerability). This issue has been assigned CVE-2009-1189. The upstream bug report is here: https://bugs.freedesktop.org/show_bug.cgi?id=17803 Our bug report for CVE-2008-3834 is bug #464674 .
The upstream fix is here: https://bugs.freedesktop.org/attachment.cgi?id=24436
This issue has been addressed in following products: Red Hat Enterprise Linux 5 Via RHSA-2010:0018 https://rhn.redhat.com/errata/RHSA-2010-0018.html