MidnightBSD

Advisories for connman

CVE-2012-2320 HIGH

ConnMan before 0.85 does not ensure that netlink messages originate from the kernel, which allows remote attackers to bypass intended access restrictions and cause a denial of service via a crafted netlink message.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,

Products Affected

Vendor Product Version
connman connman 0.20
connman connman 0.53
connman connman 0.32
connman connman 0.44
connman connman 0.46
connman connman 0.74
connman connman 0.63
connman connman 0.67
connman connman 0.60
connman connman 0.47
connman connman 0.24
connman connman 0.25
connman connman 0.70
connman connman 0.51
connman connman 0.5
connman connman 0.66
connman connman 0.52
connman connman 0.54
connman connman 0.17
connman connman 0.50
connman connman 0.31
connman connman 0.39
connman connman 0.3
connman connman 0.1
connman connman 0.62
connman connman 0.73
connman connman 0.22
connman connman 0.55
connman connman 0.58
connman connman 0.61
connman connman 0.6
connman connman 0.72
connman connman 0.26
connman connman 0.4
connman connman 0.30
connman connman 0.65
connman connman 0.2
connman connman 0.59
connman connman 0.82
connman connman 0.43
connman connman 0.48
connman connman 0.29
connman connman 0.69
connman connman 0.14
connman connman 0.8
connman connman 0.64
connman connman 0.23
connman connman 0.27
connman connman 0.18
connman connman 0.42
connman connman 0.81
connman connman 0.75
connman connman 0.56
connman connman 0.41
connman connman 0.83
connman connman 0.16
connman connman 0.34
connman connman 0.76
connman connman 0.36
connman connman 0.15
connman connman 0.71
connman connman 0.11
connman connman 0.33
connman connman 0.68
connman connman 0.40
connman connman 0.79
connman connman 0.78
connman connman *
connman connman 0.49
connman connman 0.19
connman connman 0.77
connman connman 0.45
connman connman 0.35
connman connman 0.21
connman connman 0.9
connman connman 0.80
connman connman 0.12
connman connman 0.38
connman connman 0.57
connman connman 0.7
connman connman 0.13
connman connman 0.28
connman connman 0.37
connman connman 0.10
CVE-2012-2321 HIGH

The loopback plug-in in ConnMan before 0.85 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) host name or (2) domain name in a DHCP reply.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
connman connman 0.20
connman connman 0.53
connman connman 0.32
connman connman 0.44
connman connman 0.46
connman connman 0.74
connman connman 0.63
connman connman 0.67
connman connman 0.60
connman connman 0.47
connman connman 0.24
connman connman 0.25
connman connman 0.70
connman connman 0.51
connman connman 0.5
connman connman 0.66
connman connman 0.52
connman connman 0.54
connman connman 0.17
connman connman 0.50
connman connman 0.31
connman connman 0.39
connman connman 0.3
connman connman 0.1
connman connman 0.62
connman connman 0.73
connman connman 0.22
connman connman 0.55
connman connman 0.58
connman connman 0.61
connman connman 0.6
connman connman 0.72
connman connman 0.26
connman connman 0.4
connman connman 0.30
connman connman 0.65
connman connman 0.2
connman connman 0.59
connman connman 0.82
connman connman 0.43
connman connman 0.48
connman connman 0.29
connman connman 0.69
connman connman 0.14
connman connman 0.8
connman connman 0.64
connman connman 0.23
connman connman 0.27
connman connman 0.18
connman connman 0.42
connman connman 0.81
connman connman 0.75
connman connman 0.56
connman connman 0.41
connman connman 0.83
connman connman 0.16
connman connman 0.34
connman connman 0.76
connman connman 0.36
connman connman 0.15
connman connman 0.71
connman connman 0.11
connman connman 0.33
connman connman 0.68
connman connman 0.40
connman connman 0.79
connman connman 0.78
connman connman *
connman connman 0.49
connman connman 0.19
connman connman 0.77
connman connman 0.45
connman connman 0.35
connman connman 0.21
connman connman 0.9
connman connman 0.80
connman connman 0.12
connman connman 0.38
connman connman 0.57
connman connman 0.7
connman connman 0.13
connman connman 0.28
connman connman 0.37
connman connman 0.10
CVE-2012-2322 MEDIUM

Integer overflow in the dhcpv6_get_option function in gdhcp/client.c in ConnMan before 0.85 allows remote attackers to cause a denial of service (infinite loop and crash) via an invalid length value in a DHCP packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
connman connman 0.20
connman connman 0.53
connman connman 0.32
connman connman 0.44
connman connman 0.46
connman connman 0.74
connman connman 0.63
connman connman 0.67
connman connman 0.60
connman connman 0.47
connman connman 0.24
connman connman 0.25
connman connman 0.70
connman connman 0.51
connman connman 0.5
connman connman 0.66
connman connman 0.52
connman connman 0.54
connman connman 0.17
connman connman 0.50
connman connman 0.31
connman connman 0.39
connman connman 0.3
connman connman 0.1
connman connman 0.62
connman connman 0.73
connman connman 0.22
connman connman 0.55
connman connman 0.58
connman connman 0.61
connman connman 0.6
connman connman 0.72
connman connman 0.26
connman connman 0.4
connman connman 0.30
connman connman 0.65
connman connman 0.2
connman connman 0.59
connman connman 0.82
connman connman 0.43
connman connman 0.48
connman connman 0.29
connman connman 0.69
connman connman 0.14
connman connman 0.8
connman connman 0.64
connman connman 0.23
connman connman 0.27
connman connman 0.18
connman connman 0.42
connman connman 0.81
connman connman 0.75
connman connman 0.56
connman connman 0.41
connman connman 0.83
connman connman 0.16
connman connman 0.34
connman connman 0.76
connman connman 0.36
connman connman 0.15
connman connman 0.71
connman connman 0.11
connman connman 0.33
connman connman 0.68
connman connman 0.40
connman connman 0.79
connman connman 0.78
connman connman *
connman connman 0.49
connman connman 0.19
connman connman 0.77
connman connman 0.45
connman connman 0.35
connman connman 0.21
connman connman 0.9
connman connman 0.80
connman connman 0.12
connman connman 0.38
connman connman 0.57
connman connman 0.7
connman connman 0.13
connman connman 0.28
connman connman 0.37
connman connman 0.10