connman

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description Intel's modular network connection manager
Version 1.40-1 [community]

Resolved

Group Affected Fixed Severity Status Ticket
AVG-2055 1.39-1 1.40-1 High Fixed
AVG-1543 1.38-1 1.39-1 Critical Fixed FS#69583
Issue Group Severity Remote Type Description
CVE-2021-33833 AVG-2055 High Yes Arbitrary code execution
A security issue has been found in the dnsproxy component of connman in releases 1.32 to 1.39. Unpacking of NAME and RDATA/RDLENGTH fields with TYPE A/AAAA...
CVE-2021-26676 AVG-1543 Medium Yes Information disclosure
A security issue was found in connman 1.38. A stack information leak from an uninitialised variable can lead to information disclosure to a remote attacker....
CVE-2021-26675 AVG-1543 Critical Yes Arbitrary code execution
A security issue was found in connman 1.38. A stack buffer overflow can be used to execute code by network adjacent attackers.

Advisories

Date Advisory Group Severity Type
16 Jun 2021 ASA-202106-44 AVG-2055 High arbitrary code execution
12 Feb 2021 ASA-202102-24 AVG-1543 Critical multiple issues