Information on source package connman

Available versions

ReleaseVersion
stretch1.33-3+deb9u1
stretch (security)1.33-3+deb9u2
buster1.36-2.1~deb10u2
buster (security)1.36-2.1~deb10u1
bullseye1.36-2.2
sid1.36-2.2

Open issues

BugstretchbusterbullseyesidDescription
CVE-2021-33833vulnerable (no DSA)fixedfixedfixedConnMan (aka Connection Manager) 1.30 through 1.39 has a stack-based b ...

Resolved issues

BugDescription
CVE-2021-26676gdhcp in ConnMan before 1.39 could be used by network-adjacent attacke ...
CVE-2021-26675A stack-based buffer overflow in dnsproxy in ConnMan before 1.39 could ...
CVE-2017-12865Stack-based buffer overflow in "dnsproxy.c" in connman 1.34 and earlie ...
CVE-2012-6459ConnMan 1.3 on Tizen continues to list the bluetooth service after off ...
CVE-2012-2322Integer overflow in the dhcpv6_get_option function in gdhcp/client.c i ...
CVE-2012-2321The loopback plug-in in ConnMan before 0.85 allows remote attackers to ...
CVE-2012-2320ConnMan before 0.85 does not ensure that netlink messages originate fr ...

Security announcements

DSA / DLADescription
DLA-2552-1connman - security update
DSA-4847-1connman - security update
DLA-1078-1connman - security update
DSA-3956-1connman - security update

Search for package or bug name: Reporting problems