openSUSE-SU-2022:10134-1

Опубликовано: 30 сент. 2022

Источник: suse-cvrf

Описание

Security update for connman

This update for connman fixes the following issues:

CVE-2022-32292: Add refcounting to wispr portal detection to avoid heap overflow (boo#1200190)
CVE-2022-32292: Fix OOB write in received_data (boo#1200189)

Список пакетов

SUSE Package Hub 15 SP3

connman-1.41-bp153.2.6.1

connman-client-1.41-bp153.2.6.1

connman-devel-1.41-bp153.2.6.1

connman-doc-1.41-bp153.2.6.1

connman-nmcompat-1.41-bp153.2.6.1

connman-plugin-hh2serial-gps-1.41-bp153.2.6.1

connman-plugin-iospm-1.41-bp153.2.6.1

connman-plugin-l2tp-1.41-bp153.2.6.1

connman-plugin-openvpn-1.41-bp153.2.6.1

connman-plugin-polkit-1.41-bp153.2.6.1

connman-plugin-pptp-1.41-bp153.2.6.1

connman-plugin-tist-1.41-bp153.2.6.1

connman-plugin-vpnc-1.41-bp153.2.6.1

connman-plugin-wireguard-1.41-bp153.2.6.1

connman-test-1.41-bp153.2.6.1

openSUSE Leap 15.3

connman-1.41-bp153.2.6.1

connman-client-1.41-bp153.2.6.1

connman-devel-1.41-bp153.2.6.1

connman-doc-1.41-bp153.2.6.1

connman-nmcompat-1.41-bp153.2.6.1

connman-plugin-hh2serial-gps-1.41-bp153.2.6.1

connman-plugin-iospm-1.41-bp153.2.6.1

connman-plugin-l2tp-1.41-bp153.2.6.1

connman-plugin-openvpn-1.41-bp153.2.6.1

connman-plugin-polkit-1.41-bp153.2.6.1

connman-plugin-pptp-1.41-bp153.2.6.1

connman-plugin-tist-1.41-bp153.2.6.1

connman-plugin-vpnc-1.41-bp153.2.6.1

connman-plugin-wireguard-1.41-bp153.2.6.1

connman-test-1.41-bp153.2.6.1

Ссылки

https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/B4BBTRFMU2YGB6OYSRTK6AGKO32CD5I3/
E-Mail link for openSUSE-SU-2022:10134-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1200189
SUSE Bug 1200189
https://bugzilla.suse.com/1200190
SUSE Bug 1200190
https://www.suse.com/security/cve/CVE-2022-32292/
SUSE CVE CVE-2022-32292 page
https://www.suse.com/security/cve/CVE-2022-32293/
SUSE CVE CVE-2022-32293 page

Описание

In ConnMan through 1.41, remote attackers able to send HTTP requests to the gweb component are able to exploit a heap-based buffer overflow in received_data to execute code.

Затронутые продукты

SUSE Package Hub 15 SP3:connman-1.41-bp153.2.6.1

SUSE Package Hub 15 SP3:connman-client-1.41-bp153.2.6.1

SUSE Package Hub 15 SP3:connman-devel-1.41-bp153.2.6.1

SUSE Package Hub 15 SP3:connman-doc-1.41-bp153.2.6.1

Ссылки

https://www.suse.com/security/cve/CVE-2022-32292.html
CVE-2022-32292
https://bugzilla.suse.com/1200189
SUSE Bug 1200189

Описание

In ConnMan through 1.41, a man-in-the-middle attack against a WISPR HTTP query could be used to trigger a use-after-free in WISPR handling, leading to crashes or code execution.

Затронутые продукты

SUSE Package Hub 15 SP3:connman-1.41-bp153.2.6.1

SUSE Package Hub 15 SP3:connman-client-1.41-bp153.2.6.1

SUSE Package Hub 15 SP3:connman-devel-1.41-bp153.2.6.1

SUSE Package Hub 15 SP3:connman-doc-1.41-bp153.2.6.1

Ссылки

https://www.suse.com/security/cve/CVE-2022-32293.html
CVE-2022-32293
https://bugzilla.suse.com/1200190
SUSE Bug 1200190

openSUSE-SU-2022:10134-1

Описание

Список пакетов

SUSE Package Hub 15 SP3

openSUSE Leap 15.3

Ссылки

Уязвимость: CVE-2022-32292

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2022-32293

Описание

Затронутые продукты

Ссылки