Lucene search
Debian: Security Advisory (DSA-3956-1)
🗓️ 26 Aug 2017 00:00:00Reported by Copyright (C) 2017 Greenbone AGType 
openvas🔗 plugins.openvas.org👁 17 Views
The remote host is missing an update for the Debian 'connman' package(s) announced via the DSA-3956-1 advisory. Security consultants in NRI Secure Technologies discovered a stack overflow vulnerability in ConnMan, a network manager for embedded devices
Show more
| Reporter | Title | Published | Views | Family All 21 |
|---|---|---|---|---|
 | Stack overflow | 29 Aug 201716:29 | – | prion |
 | CVE-2017-12865 | 29 Aug 201716:29 | – | cve |
| CVE-2017-5716 | 5 Sep 201719:29 | – | cve |
| Debian: Security Advisory (DLA-1078-1) | 6 Feb 201800:00 | – | openvas |
| Mageia: Security Advisory (MGASA-2018-0036) | 28 Jan 202200:00 | – | openvas |
 | connman - security update | 27 Aug 201700:00 | – | osv |
| connman - security update | 30 Aug 201700:00 | – | osv |
| connman-1.40-2.2 on GA media | 15 Jun 202400:00 | – | osv |
 | CVE-2017-12865 | 29 Aug 201716:00 | – | cvelist |
 | [SECURITY] [DSA 3956-1] connman security update | 27 Aug 201722:24 | – | debian |
10
| Source | Link |
|---|---|
| security-tracker | www.security-tracker.debian.org/tracker/DSA-3956 |
| debian | www.debian.org/security/2017/DSA-3956-1 |
# SPDX-FileCopyrightText: 2017 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.703956");
script_cve_id("CVE-2017-12865");
script_tag(name:"creation_date", value:"2017-08-26 22:00:00 +0000 (Sat, 26 Aug 2017)");
script_version("2024-02-02T05:06:06+0000");
script_tag(name:"last_modification", value:"2024-02-02 05:06:06 +0000 (Fri, 02 Feb 2024)");
script_tag(name:"cvss_base", value:"7.5");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2017-09-06 19:10:19 +0000 (Wed, 06 Sep 2017)");
script_name("Debian: Security Advisory (DSA-3956-1)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2017 Greenbone AG");
script_family("Debian Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/debian_linux", "ssh/login/packages", re:"ssh/login/release=DEB(8|9)");
script_xref(name:"Advisory-ID", value:"DSA-3956-1");
script_xref(name:"URL", value:"https://www.debian.org/security/2017/DSA-3956-1");
script_xref(name:"URL", value:"https://security-tracker.debian.org/tracker/DSA-3956");
script_tag(name:"summary", value:"The remote host is missing an update for the Debian 'connman' package(s) announced via the DSA-3956-1 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"Security consultants in NRI Secure Technologies discovered a stack overflow vulnerability in ConnMan, a network manager for embedded devices. An attacker with control of the DNS responses to the DNS proxy in ConnMan might crash the service and, in same cases, remotely execute arbitrary commands in the host running the service.
For the oldstable distribution (jessie), this problem has been fixed in version 1.21-1.2+deb8u1.
For the stable distribution (stretch), this problem has been fixed in version 1.33-3+deb9u1.
For the testing distribution (buster), this problem has been fixed in version 1.33-3+deb9u1.
For the unstable distribution (sid), this problem has been fixed in version 1.35-1.
We recommend that you upgrade your connman packages.");
script_tag(name:"affected", value:"'connman' package(s) on Debian 8, Debian 9.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-deb.inc");
release = dpkg_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "DEB8") {
if(!isnull(res = isdpkgvuln(pkg:"connman", ver:"1.21-1.2+deb8u1", rls:"DEB8"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"connman-dev", ver:"1.21-1.2+deb8u1", rls:"DEB8"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"connman-doc", ver:"1.21-1.2+deb8u1", rls:"DEB8"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"connman-vpn", ver:"1.21-1.2+deb8u1", rls:"DEB8"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "DEB9") {
if(!isnull(res = isdpkgvuln(pkg:"connman", ver:"1.33-3+deb9u1", rls:"DEB9"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"connman-dev", ver:"1.33-3+deb9u1", rls:"DEB9"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"connman-doc", ver:"1.33-3+deb9u1", rls:"DEB9"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"connman-vpn", ver:"1.33-3+deb9u1", rls:"DEB9"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo26 Aug 2017 00:00Current
9.6High risk
Vulners AI Score9.6
CVSS27.5
CVSS39.8
EPSS0.033