Lucene search
+L

16 matches found

cvelist
cvelist
added 2026/06/30 3:50 p.m.39 views

CVE-2026-10652 Out-of-bounds read in Zephyr DNS resolver TXT/SRV record parsing (unvalidated `rdlength`)

Zephyr's DNS resolver subsys/net/lib/dns parses resource records from DNS responses in dnsunpackanswer, which validated only the fixed RR header type, class, TTL, rdlength and accepted any attacker-declared rdlength, including one extending past the end of the received datagram. The TXT and SRV...

4.8CVSS0.00252EPSS
Exploits1References2
euvd
euvd
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-36953

Malicious code in bioql PyPI...

8.1CVSS6.3AI score0.00673EPSS
Exploits0References4
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-9924

Malicious code in bioql PyPI...

4.8CVSS4.8AI score0.00376EPSS
Exploits0References5
redhatcve
redhatcve
added 2025/04/07 12:21 a.m.21 views

CVE-2025-32366

A flaw was found in ConnMan's DNS proxy component. This vulnerability allows an attacker to cause a buffer overread or memory corruption via a crafted DNS response due to improper validation of the RDLENGTH field before using it in a memcpy operation. Mitigation Mitigation for this issue is eithe...

3.7CVSS4.2AI score0.00376EPSS
Exploits0References5
nvd
nvd
added 2025/04/05 11:15 p.m.25 views

CVE-2025-32366

In ConnMan through 1.44, parserr in dnsproxy.c has a memcpy length that depends on an RR RDLENGTH value, i.e., rdlen=ntohsrr-rdlen and memcpyresponse+offset,end,rdlen without a check for whether the sum of end and rdlen exceeds max. Consequently, rdlen may be larger than the amount of remaining...

4.8CVSS0.00376EPSS
Exploits0References4
osv
osv
added 2025/04/05 11:15 p.m.19 views

CVE-2025-32366

In ConnMan through 1.44, parserr in dnsproxy.c has a memcpy length that depends on an RR RDLENGTH value, i.e., rdlen=ntohsrr-rdlen and memcpyresponse+offset,end,rdlen without a check for whether the sum of end and rdlen exceeds max. Consequently, rdlen may be larger than the amount of remaining...

4.6AI score
Exploits0References4
cve
cve
added 2025/04/05 12:0 a.m.83 views

CVE-2025-32366

In ConnMan up to version 1.44, the DNS proxy code path parse_rr in dnsproxy.c uses a memcpy length derived from an RR RDLENGTH (rdlen) value without validating that end+rdlen stays within the remaining packet data. Specifically, rdlen is computed as ntohs(rr->rdlen) and memcpy(response+offset,...

4.8CVSS4.6AI score0.00376EPSS
Exploits0References4
vulnrichment
vulnrichment
added 2025/04/05 12:0 a.m.6 views

CVE-2025-32366

In ConnMan through 1.44, parserr in dnsproxy.c has a memcpy length that depends on an RR RDLENGTH value, i.e., rdlen=ntohsrr-rdlen and memcpyresponse+offset,end,rdlen without a check for whether the sum of end and rdlen exceeds max. Consequently, rdlen may be larger than the amount of remaining...

4.8CVSS4.7AI score0.00376EPSS
Exploits0References4
cnnvd
cnnvd
added 2025/04/05 12:0 a.m.7 views

ConnMan 安全漏洞

ConnMan is an Aldebaran open source connection manager. A security vulnerability exists in ConnMan 1.44 and earlier versions, which stems from a memcpy length dependency on the RR RDLENGTH value...

4.8CVSS4.7AI score0.00376EPSS
Exploits0References4
debiancve
debiancve
added 2025/04/05 12:0 a.m.13 views

CVE-2025-32366

In ConnMan through 1.44, parserr in dnsproxy.c has a memcpy length that depends on an RR RDLENGTH value, i.e., rdlen=ntohsrr-rdlen and memcpyresponse+offset,end,rdlen without a check for whether the sum of end and rdlen exceeds max. Consequently, rdlen may be larger than the amount of remaining...

4.8CVSS4.9AI score0.00376EPSS
Exploits0
osv
osv
added 2023/12/18 10:15 a.m.1 views

DEBIAN-CVE-2023-32726

The vulnerability is caused by improper check for check if RDLENGTH does not overflow the buffer in response from DNS server...

8.1CVSS6.4AI score0.00673EPSS
Exploits0References1
ubuntucve
ubuntucve
added 2023/12/18 10:15 a.m.28 views

CVE-2023-32726

The vulnerability is caused by improper check for check if RDLENGTH does not overflow the buffer in response from DNS server...

8.1CVSS6.7AI score0.00673EPSS
Exploits0References2
osv
osv
added 2023/12/18 10:15 a.m.3 views

UBUNTU-CVE-2023-32726

The vulnerability is caused by improper check for check if RDLENGTH does not overflow the buffer in response from DNS server...

8.1CVSS6AI score0.00673EPSS
Exploits0References3
cvelist
cvelist
added 2023/12/18 9:17 a.m.33 views

CVE-2023-32726 Possible buffer overread from reading DNS responses

The vulnerability is caused by improper check for check if RDLENGTH does not overflow the buffer in response from DNS server...

3.9CVSS8.4AI score0.00673EPSS
Exploits0References4
prion
prion
added 2021/06/09 6:15 p.m.19 views

Stack overflow

ConnMan aka Connection Manager 1.30 through 1.39 has a stack-based buffer overflow in uncompress in dnsproxy.c via NAME, RDATA, or RDLENGTH for A or AAAA...

7.5CVSS9.6AI score0.02863EPSS
Exploits1References5Affected Software2
cnnvd
cnnvd
added 2021/06/09 12:0 a.m.6 views

ConnMan 缓冲区错误漏洞

Arch Linux ConnMan 1.39 is an application from the Arch Linux community in the United States. It provides Intel's modular network connection manager. A buffer error vulnerability exists in ConnMan that stems from a stack-based buffer overflow when ConnMan is unpacked via NAME, RDATA, or RDLENGTH ...

9.8CVSS8.6AI score0.02863EPSS
Exploits1References11
Rows per page
Query Builder