3 matches found
CVE-2025-32743
In ConnMan through 1.44, the lookup string in nsresolv in dnsproxy.c can be NULL or an empty string when the TC Truncated bit is set in a DNS response. This allows attackers to cause a denial of service application crash or possibly execute arbitrary code, because those lookup values lead to...
UBUNTU-CVE-2025-32743
In ConnMan through 1.44, the lookup string in nsresolv in dnsproxy.c can be NULL or an empty string when the TC Truncated bit is set in a DNS response. This allows attackers to cause a denial of service application crash or possibly execute arbitrary code, because those lookup values lead to...
CVE-2025-32743
CVE-2025-32743 affects ConnMan up to version 1.44. The vulnerability is in dnsproxy.c: ns_resolv lookup string can be NULL or empty when the DNS response sets the TC (Truncated) bit. This can cause denial of service (application crash) and potentially arbitrary code execution due to incorrect len...