EUVD-2023-36953

Malicious code in bioql PyPI...

EUVD-2025-9924

Malicious code in bioql PyPI...

CVE-2025-32366

A flaw was found in ConnMan's DNS proxy component. This vulnerability allows an attacker to cause a buffer overread or memory corruption via a crafted DNS response due to improper validation of the RDLENGTH field before using it in a memcpy operation. Mitigation Mitigation for this issue is eithe...

CVE-2025-32366

In ConnMan through 1.44, parserr in dnsproxy.c has a memcpy length that depends on an RR RDLENGTH value, i.e., rdlen=ntohsrr-rdlen and memcpyresponse+offset,end,rdlen without a check for whether the sum of end and rdlen exceeds max. Consequently, rdlen may be larger than the amount of remaining...

CVE-2025-32366

In ConnMan through 1.44, parserr in dnsproxy.c has a memcpy length that depends on an RR RDLENGTH value, i.e., rdlen=ntohsrr-rdlen and memcpyresponse+offset,end,rdlen without a check for whether the sum of end and rdlen exceeds max. Consequently, rdlen may be larger than the amount of remaining...

ConnMan 安全漏洞

ConnMan is an Aldebaran open source connection manager. A security vulnerability exists in ConnMan 1.44 and earlier versions, which stems from a memcpy length dependency on the RR RDLENGTH value...

CVE-2025-32366

In ConnMan through 1.44, parserr in dnsproxy.c has a memcpy length that depends on an RR RDLENGTH value, i.e., rdlen=ntohsrr-rdlen and memcpyresponse+offset,end,rdlen without a check for whether the sum of end and rdlen exceeds max. Consequently, rdlen may be larger than the amount of remaining...

CVE-2025-32366

In ConnMan up to version 1.44, the DNS proxy code path parse_rr in dnsproxy.c uses a memcpy length derived from an RR RDLENGTH (rdlen) value without validating that end+rdlen stays within the remaining packet data. Specifically, rdlen is computed as ntohs(rr->rdlen) and memcpy(response+offset,...

CVE-2025-32366

In ConnMan through 1.44, parserr in dnsproxy.c has a memcpy length that depends on an RR RDLENGTH value, i.e., rdlen=ntohsrr-rdlen and memcpyresponse+offset,end,rdlen without a check for whether the sum of end and rdlen exceeds max. Consequently, rdlen may be larger than the amount of remaining...

DEBIAN-CVE-2023-32726

The vulnerability is caused by improper check for check if RDLENGTH does not overflow the buffer in response from DNS server...

UBUNTU-CVE-2023-32726

The vulnerability is caused by improper check for check if RDLENGTH does not overflow the buffer in response from DNS server...

CVE-2023-32726

The vulnerability is caused by improper check for check if RDLENGTH does not overflow the buffer in response from DNS server...

CVE-2023-32726 Possible buffer overread from reading DNS responses

The vulnerability is caused by improper check for check if RDLENGTH does not overflow the buffer in response from DNS server...

Stack overflow

ConnMan aka Connection Manager 1.30 through 1.39 has a stack-based buffer overflow in uncompress in dnsproxy.c via NAME, RDATA, or RDLENGTH for A or AAAA...

ConnMan 缓冲区错误漏洞

Arch Linux ConnMan 1.39 is an application from the Arch Linux community in the United States. It provides Intel's modular network connection manager. A buffer error vulnerability exists in ConnMan that stems from a stack-based buffer overflow when ConnMan is unpacked via NAME, RDATA, or RDLENGTH ...