9 matches found
Ubuntu: Security Advisory (USN-6236-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 : ConnMan vulnerabilities (USN-6236-1)
The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6236-1 advisory. It was discovered that ConnMan could be made to write out of bounds. A remote attacker could possibly use thi...
[SECURITY] [DLA 3144-1] connman security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3144-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort October 10, 2022 https://wiki.debian.org/LTS -...
[SECURITY] [DSA 5231-1] connman security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5231-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 17, 2022 https://www.debian.org/security/faq -...
CVE-2022-23098
An issue was discovered in the DNS proxy in Connman through 1.40. The TCP server reply implementation has an infinite loop if no data is received...
Updated connman packages fix security vulnerability
TCP Receive Path does not Check for Presence of Sufficient Header Data. CVE-2022-23096 Possibly invalid memory reference in 'strnlen' call in 'forwarddnsreply'. CVE-2022-23097 TCP Receive Path Triggers 100 % CPU loop if DNS server does not Send Back Data. CVE-2022-23098...
UBUNTU-CVE-2022-23098
An issue was discovered in the DNS proxy in Connman through 1.40. The TCP server reply implementation has an infinite loop if no data is received...
CVE-2022-23098
ConnMan (DNS proxy) vulnerability CVE-2022-23098: The TCP server reply path can loop infinitely when no data is received, causing a denial of service. Affected through ConnMan 1.40. Remediation: upgrade to fixed releases per advisories (e.g., Debian bullseye 1.36-2.2+deb11u1, Debian DLA-3144-1 1....
CVE-2022-23098
An issue was discovered in the DNS proxy in Connman through 1.40. The TCP server reply implementation has an infinite loop if no data is received...