Commit 6c4da559 authored May 12, 2025 by Dario Binacchi Committed by Julien Olivain May 12, 2025

package/connman: fix CVE-2025-32743

In ConnMan through 1.44, the lookup string in ns_resolv in dnsproxy.c
can be NULL or an empty string when the TC (Truncated) bit is set in
a DNS response. This allows attackers to cause a denial of service
(application crash) or possibly execute arbitrary code, because those
lookup values lead to incorrect length calculations and incorrect
memcpy operations.

Fixes:
https://www.cve.org/CVERecord?id=CVE-2025-32743



Signed-off-by: Dario Binacchi <dario.binacchi@amarulasolutions.com>
[Julien: add link to cve]
Signed-off-by: Julien Olivain <ju.o@free.fr>

parent ce9a64b5

Show whitespace changes

Inline Side-by-side

arnout @arnout
mentioned in commit 10a6440b
· May 31, 2025

mentioned in commit 10a6440b

mentioned in commit 10a6440b98cd6c57b26815ff97753ca560c53f9b

Toggle commit list

Please register or to comment