Описание
Security update for connman
This update for connman fixes the following issues:
- CVE-2022-32292: Add refcounting to wispr portal detection to avoid heap overflow (boo#1200190)
- CVE-2022-32292: Fix OOB write in received_data (boo#1200189)
Список пакетов
SUSE Package Hub 15 SP4
connman-1.41-bp154.2.3.1
connman-client-1.41-bp154.2.3.1
connman-devel-1.41-bp154.2.3.1
connman-doc-1.41-bp154.2.3.1
connman-nmcompat-1.41-bp154.2.3.1
connman-plugin-hh2serial-gps-1.41-bp154.2.3.1
connman-plugin-iospm-1.41-bp154.2.3.1
connman-plugin-l2tp-1.41-bp154.2.3.1
connman-plugin-openvpn-1.41-bp154.2.3.1
connman-plugin-polkit-1.41-bp154.2.3.1
connman-plugin-pptp-1.41-bp154.2.3.1
connman-plugin-tist-1.41-bp154.2.3.1
connman-plugin-vpnc-1.41-bp154.2.3.1
connman-plugin-wireguard-1.41-bp154.2.3.1
connman-test-1.41-bp154.2.3.1
openSUSE Leap 15.4
connman-1.41-bp154.2.3.1
connman-client-1.41-bp154.2.3.1
connman-devel-1.41-bp154.2.3.1
connman-doc-1.41-bp154.2.3.1
connman-nmcompat-1.41-bp154.2.3.1
connman-plugin-hh2serial-gps-1.41-bp154.2.3.1
connman-plugin-iospm-1.41-bp154.2.3.1
connman-plugin-l2tp-1.41-bp154.2.3.1
connman-plugin-openvpn-1.41-bp154.2.3.1
connman-plugin-polkit-1.41-bp154.2.3.1
connman-plugin-pptp-1.41-bp154.2.3.1
connman-plugin-tist-1.41-bp154.2.3.1
connman-plugin-vpnc-1.41-bp154.2.3.1
connman-plugin-wireguard-1.41-bp154.2.3.1
connman-test-1.41-bp154.2.3.1
Ссылки
- E-Mail link for openSUSE-SU-2022:10076-1
- SUSE Security Ratings
- SUSE Bug 1200189
- SUSE Bug 1200190
- SUSE CVE CVE-2022-32292 page
- SUSE CVE CVE-2022-32293 page
Описание
In ConnMan through 1.41, remote attackers able to send HTTP requests to the gweb component are able to exploit a heap-based buffer overflow in received_data to execute code.
Затронутые продукты
SUSE Package Hub 15 SP4:connman-1.41-bp154.2.3.1
SUSE Package Hub 15 SP4:connman-client-1.41-bp154.2.3.1
SUSE Package Hub 15 SP4:connman-devel-1.41-bp154.2.3.1
SUSE Package Hub 15 SP4:connman-doc-1.41-bp154.2.3.1
Ссылки
- CVE-2022-32292
- SUSE Bug 1200189
Описание
In ConnMan through 1.41, a man-in-the-middle attack against a WISPR HTTP query could be used to trigger a use-after-free in WISPR handling, leading to crashes or code execution.
Затронутые продукты
SUSE Package Hub 15 SP4:connman-1.41-bp154.2.3.1
SUSE Package Hub 15 SP4:connman-client-1.41-bp154.2.3.1
SUSE Package Hub 15 SP4:connman-devel-1.41-bp154.2.3.1
SUSE Package Hub 15 SP4:connman-doc-1.41-bp154.2.3.1
Ссылки
- CVE-2022-32293
- SUSE Bug 1200190