Amazon Linux AMI Security Advisory: ALAS-2012-128
Advisory Release Date: 2012-09-22 21:37 Pacific
Advisory Updated Date: 2014-09-14 17:04 Pacific
It was discovered that the D-Bus library honored environment settings even when running with elevated privileges. A local attacker could possibly use this flaw to escalate their privileges, by setting specific environment variables before running a setuid or setgid application linked against the D-Bus library (libdbus). (CVE-2012-3524)
Run yum update dbus to update your system.