6 matches found
CVE-2025-32366
In ConnMan through 1.44, parserr in dnsproxy.c has a memcpy length that depends on an RR RDLENGTH value, i.e., rdlen=ntohsrr-rdlen and memcpyresponse+offset,end,rdlen without a check for whether the sum of end and rdlen exceeds max. Consequently, rdlen may be larger than the amount of remaining...
The vulnerability of the dnsproxy package of the Connman connection manager allows a hacker to cause a service failure or expose protected information.
The vulnerability of the dnsproxy package of the Connman connection controller involves reading data beyond the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures or expose sensitive information...
The vulnerability of the dnsproxy package from the ConnectMan controller lies in the fact that memory writes beyond the buffer boundaries allow a hacker to execute arbitrary code.
The vulnerability of the dnsproxy package of the Connman connection manager is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
CVE-2021-33833
ConnMan aka Connection Manager 1.30 through 1.39 has a stack-based buffer overflow in uncompress in dnsproxy.c via NAME, RDATA, or RDLENGTH for A or AAAA...
The vulnerability of the dnsproxy package from the ConnectMan controller allows a hacker to execute arbitrary code.
The vulnerability of the dnsproxy package of the Connman connection manager is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
CVE-2021-26675
A stack-based buffer overflow in dnsproxy in ConnMan before 1.39 could be used by network adjacent attackers to execute code...