Lucene search
Veracode Vulnerability DatabaseVERACODE:29295HistoryFeb 09, 2021 - 12:23 a.m.
Arbitrary Code Execution
2021-02-0900:23:35
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
0.002 Low
EPSS
Percentile
61.1%
connman is vulnerable to arbitrary code execution. The vulnerability exists through a stack-based buffer overflow in dnsproxy in ConnMan.
| CPE | Name | Operator | Version |
|---|---|---|---|
| connman:sid | eq | 1.36-2+b1 | |
| connman:buster | eq | 1.36-2 | |
| connman:stretch | eq | 1.33-3+deb9u1 | |
| connman:bullseye | eq | 1.36-2+b1 | |
| connman:edge | eq | 1.38-r2 | |
| connman:3.13 | eq | 1.38-r4 |
References
bugzilla.suse.com/show_bug.cgi?id=1181751
git.kernel.org/pub/scm/network/connman/connman.git/commit/?id=e4079a20f617a4b076af503f6e4e8b0304c9f2cb
git.kernel.org/pub/scm/network/connman/connman.git/tree/ChangeLog
kunnamon.io/tbone/
lists.debian.org/debian-lts-announce/2021/02/msg00013.html
security-tracker.debian.org/tracker/CVE-2021-26675
security.gentoo.org/glsa/202107-29
www.debian.org/security/2021/dsa-4847
www.openwall.com/lists/oss-security/2021/02/08/2
Related
prion
prion
Stack overflow
2021-02-09 16:15:00
alpinelinux
alpinelinux
CVE-2021-26675
2021-02-09 16:15:12
ubuntucve
ubuntucve
CVE-2021-26675
2021-02-09 00:00:00
cvelist
cvelist
CVE-2021-26675
2021-02-09 15:47:25
nvd
nvd
CVE-2021-26675
2021-02-09 16:15:12
cve
cve
CVE-2021-26675
2021-02-09 16:15:12
debiancve
debiancve
CVE-2021-26675
2021-02-09 16:15:12
mageia
mageia
Updated connman packages fix security vulnerabilities
2021-04-24 01:53:14
debian
debian
[SECURITY] [DLA 2552-1] connman security update
2021-02-09 21:00:02
[SECURITY] [DSA 4847-1] connman security update
2021-02-08 20:02:58
[SECURITY] [DSA 4847-1] connman security update
2021-02-08 20:02:58
nessus
nessus
Debian DLA-2552-1 : connman security update
2021-02-10 00:00:00
openSUSE Security Update : connman (openSUSE-2021-416)
2021-03-17 00:00:00
Debian DSA-4847-1 : connman - security update
2021-02-10 00:00:00
osv
osv
connman - security update
2021-02-09 00:00:00
connman - security update
2021-02-08 00:00:00
connman vulnerabilities
2023-07-19 08:45:49
openvas
openvas
Debian: Security Advisory (DLA-2552-1)
2021-02-10 00:00:00
Debian: Security Advisory (DSA-4847-1)
2021-02-10 00:00:00
Mageia: Security Advisory (MGASA-2021-0195)
2022-01-28 00:00:00
suse
suse
Security update for connman (moderate)
2021-03-20 00:00:00
Security update for connman (moderate)
2021-03-16 00:00:00
archlinux
archlinux
[ASA-202102-24] connman: multiple issues
2021-02-12 00:00:00
gentoo
gentoo
ConnMan: Multiple vulnerabilities
2021-07-12 00:00:00
ubuntu
ubuntu
ConnMan vulnerabilities
2023-07-19 00:00:00