2 matches found
CVE-2021-26675
CVE-2021-26675 affects ConnMan’s DNS proxy (dnsproxy) prior to version 1.39. It is a stack-based buffer overflow that could allow a network-adjacent attacker to execute arbitrary code, as described across multiple sources (Arch Linux ASA, openSUSE update, Debian DSA/DLA, Gentoo GLSA). The issue i...
CVE-2021-26676
ConnMan gdhcp flaw (CVE-2021-26676) causes a stack information leak via an uninitialized variable in the gdhcp component, affecting ConnMan versions prior to 1.39. Network-adjacent attackers could leverage the leak to facilitate further exploitation related to bugs in gdhcp. Public advisories (Op...