What’s the security issue with dbus more specifically?
It’s mere existence increasing attack surface? I.e. even if running in a sandbox if any application parses untrusted input then there are more chances to exploit something in dbus?
Or is it that dbus can result in instructions given to other programs that circumvent confinement (MAC)?