332 matches found
PT-2025-15079 · Connman +1 · Connman +1
Name of the Vulnerable Software and Affected Versions: ConnMan versions 1.44 and earlier Description: The issue is related to a memcpy length that depends on an RR RDLENGTH value in the parse rr function in dnsproxy.c. This could potentially lead to issues due to the direct use of...
CVE-2025-32366
In ConnMan up to version 1.44, the DNS proxy code path parse_rr in dnsproxy.c uses a memcpy length derived from an RR RDLENGTH (rdlen) value without validating that end+rdlen stays within the remaining packet data. Specifically, rdlen is computed as ntohs(rr->rdlen) and memcpy(response+offset,...
ConnMan 安全漏洞
ConnMan is an Aldebaran open source connection manager. A security vulnerability exists in ConnMan 1.44 and earlier versions, which stems from a memcpy length dependency on the RR RDLENGTH value...
CVE-2025-32366
In ConnMan through 1.44, parserr in dnsproxy.c has a memcpy length that depends on an RR RDLENGTH value, i.e., rdlen=ntohsrr-rdlen and memcpyresponse+offset,end,rdlen without a check for whether the sum of end and rdlen exceeds max. Consequently, rdlen may be larger than the amount of remaining...
OPENSUSE-SU-2024:12221-1 connman-1.41-4.1 on GA media
These are all security issues fixed in the connman-1.41-4.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:13420-1 connman-1.42-1.1 on GA media
These are all security issues fixed in the connman-1.42-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:11792-1 connman-1.41-1.1 on GA media
These are all security issues fixed in the connman-1.41-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:10692-1 connman-1.40-2.2 on GA media
These are all security issues fixed in the connman-1.40-2.2 package on the GA media of openSUSE Tumbleweed...
openSUSE: Security Advisory for connman (openSUSE-SU-2023:0370-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for connman (openSUSE-SU-2023:0369-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for connman (openSUSE-SU-2022:10076-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE 15 Security Update : connman (openSUSE-SU-2023:0370-1)
The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2023:0370-1 advisory. - client.c in gdhcp in ConnMan through 1.41 could be used by network-adjacent attackers operating a crafted DHCP server to cause a stack-based buffer...
openSUSE 15 Security Update : connman (openSUSE-SU-2023:0369-1)
The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2023:0369-1 advisory. - client.c in gdhcp in ConnMan through 1.41 could be used by network-adjacent attackers operating a crafted DHCP server to cause a stack-based buffer...
OPENSUSE-SU-2023:0370-1 Security update for connman
This update for connman fixes the following issues: - Update to 1.42 Fix issue with iwd and signal strength calculation. Fix issue with iwd and handling service removal. Fix issue with iwd and handling new connections. Fix issue with handling default online check URL. Fix issue with handling...
OPENSUSE-SU-2023:0369-1 Security update for connman
This update for connman fixes the following issues: Update to 1.42 Fix issue with iwd and signal strength calculation. Fix issue with iwd and handling service removal. Fix issue with iwd and handling new connections. Fix issue with handling default online check URL. Fix issue with handling...
Security update for connman (important)
openSUSE Security Update: Security update for connman Announcement ID: openSUSE-SU-2023:0369-1 Rating: important References: 1210395 Cross-References: CVE-2023-28488 CVSS scores: CVE-2023-28488 NVD : 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Backports SLE-15-SP5...
Security update for connman (important)
openSUSE Security Update: Security update for connman Announcement ID: openSUSE-SU-2023:0370-1 Rating: important References: 1210395 Cross-References: CVE-2023-28488 CVSS scores: CVE-2023-28488 NVD : 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Backports SLE-15-SP4...
ConnMan: Multiple Vulnerabilities
Background ConnMan provides a daemon for managing Internet connections. Description Multiple vulnerabilities have been discovered in ConnMan. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no kno...
GLSA-202310-21 : ConnMan: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202310-21 ConnMan: Multiple Vulnerabilities - An issue was discovered in the DNS proxy in Connman through 1.40. The TCP server reply implementation lacks a check for the presence of sufficient Header Data, leading to an...
Ubuntu: Security Advisory (USN-6236-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...