Описание
An issue was discovered in the DNS proxy in Connman through 1.40. forward_dns_reply mishandles a strnlen call, leading to an out-of-bounds read.
An issue was discovered in the DNS proxy in Connman through 1.40. forward_dns_reply mishandles a strnlen call, leading to an out-of-bounds read.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2022-23097
- https://git.kernel.org/pub/scm/network/connman/connman.git/log
- https://lists.debian.org/debian-lts-announce/2022/02/msg00009.html
- https://security.gentoo.org/glsa/202310-21
- https://www.debian.org/security/2022/dsa-5231
- https://www.openwall.com/lists/oss-security/2022/01/25/1
Связанные уязвимости
An issue was discovered in the DNS proxy in Connman through 1.40. forward_dns_reply mishandles a strnlen call, leading to an out-of-bounds read.
An issue was discovered in the DNS proxy in Connman through 1.40. forward_dns_reply mishandles a strnlen call, leading to an out-of-bounds read.
An issue was discovered in the DNS proxy in Connman through 1.40. forw ...
Уязвимость пакета dnsproxy диспетчера соединений Connman, позволяющая нарушителю получить доступ к конфиденциальной информации или вызвать отказ в обслуживании