rpm package

opensuse/connman&distro=openSUSE Leap 15.3

pkg:rpm/opensuse/connman&distro=openSUSE%20Leap%2015.3

Vulnerabilities (16)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2022-32293	—	< 1.41-bp153.2.6.1	1.41-bp153.2.6.1	Aug 3, 2022	In ConnMan through 1.41, a man-in-the-middle attack against a WISPR HTTP query could be used to trigger a use-after-free in WISPR handling, leading to crashes or code execution.
CVE-2022-32292	—	< 1.41-bp153.2.6.1	1.41-bp153.2.6.1	Aug 3, 2022	In ConnMan through 1.41, remote attackers able to send HTTP requests to the gweb component are able to exploit a heap-based buffer overflow in received_data to execute code.
CVE-2021-4002	—	< 1.41-bp153.2.3.1	1.41-bp153.2.3.1	Mar 3, 2022	A memory leak flaw in the Linux kernel's hugetlbfs memory usage was found in the way the user maps some regions of memory twice using shmget() which are aligned to PUD alignment with the fault of some of the memory pages. A local user could use this flaw to get unauthorized acces
CVE-2021-4001	—	< 1.41-bp153.2.3.1	1.41-bp153.2.3.1	Jan 21, 2022	A race condition was found in the Linux kernel's ebpf verifier between bpf_map_update_elem and bpf_map_freeze due to a missing lock in kernel/bpf/syscall.c. In this flaw, a local user with a special privilege (cap_sys_admin or cap_bpf) can modify the frozen mapped address space.
CVE-2021-28715	—	< 1.41-bp153.2.3.1	1.41-bp153.2.3.1	Jan 6, 2022	Guest can force Linux netback driver to hog large amounts of kernel memory T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Incoming data packets for a guest in the Linux kernel's netback driver are b
CVE-2021-28714	—	< 1.41-bp153.2.3.1	1.41-bp153.2.3.1	Jan 6, 2022	Guest can force Linux netback driver to hog large amounts of kernel memory T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Incoming data packets for a guest in the Linux kernel's netback driver are b
CVE-2021-28713	—	< 1.41-bp153.2.3.1	1.41-bp153.2.3.1	Jan 5, 2022	Rogue backends can cause DoS of guests via high frequency events T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Xen offers the ability to run PV backends in regular unprivileged guests, typically re
CVE-2021-28712	—	< 1.41-bp153.2.3.1	1.41-bp153.2.3.1	Jan 5, 2022	Rogue backends can cause DoS of guests via high frequency events T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Xen offers the ability to run PV backends in regular unprivileged guests, typically re
CVE-2021-28711	—	< 1.41-bp153.2.3.1	1.41-bp153.2.3.1	Jan 5, 2022	Rogue backends can cause DoS of guests via high frequency events T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Xen offers the ability to run PV backends in regular unprivileged guests, typically re
CVE-2021-45485	—	< 1.41-bp153.2.3.1	1.41-bp153.2.3.1	Dec 25, 2021	In the IPv6 implementation in the Linux kernel before 5.13.3, net/ipv6/output_core.c has an information leak because of certain use of a hash table which, although big, doesn't properly consider that IPv6-based attackers can typically choose among many IPv6 source addresses.
CVE-2021-45486	—	< 1.41-bp153.2.3.1	1.41-bp153.2.3.1	Dec 25, 2021	In the IPv4 implementation in the Linux kernel before 5.12.4, net/ipv4/route.c has an information leak because the hash table is very small.
CVE-2021-33098	—	< 1.41-bp153.2.3.1	1.41-bp153.2.3.1	Nov 17, 2021	Improper input validation in the Intel(R) Ethernet ixgbe driver for Linux before version 3.17.3 may allow an authenticated user to potentially enable denial of service via local access.
CVE-2021-43975	—	< 1.41-bp153.2.3.1	1.41-bp153.2.3.1	Nov 17, 2021	In the Linux kernel through 5.15.2, hw_atl_utils_fw_rpc_wait in drivers/net/ethernet/aquantia/atlantic/hw_atl/hw_atl_utils.c allows an attacker (who can introduce a crafted device) to trigger an out-of-bounds write via a crafted length value.
CVE-2021-43976	—	< 1.41-bp153.2.3.1	1.41-bp153.2.3.1	Nov 17, 2021	In the Linux kernel through 5.15.2, mwifiex_usb_recv in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker (who can connect a crafted USB device) to cause a denial of service (skb_over_panic).
CVE-2020-27820	—	< 1.41-bp153.2.3.1	1.41-bp153.2.3.1	Nov 2, 2021	A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose() handler could happen if removing device (that is not common to remove video card physically without power-off, but same happens if "unbind" the driver).
CVE-2020-24504	—	< 1.41-bp153.2.3.1	1.41-bp153.2.3.1	Feb 17, 2021	Uncontrolled resource consumption in some Intel(R) Ethernet E810 Adapter drivers for Linux before version 1.0.4 may allow an authenticated user to potentially enable denial of service via local access.

CVE-2022-32293Aug 3, 2022
affected < 1.41-bp153.2.6.1fixed 1.41-bp153.2.6.1
In ConnMan through 1.41, a man-in-the-middle attack against a WISPR HTTP query could be used to trigger a use-after-free in WISPR handling, leading to crashes or code execution.
CVE-2022-32292Aug 3, 2022
affected < 1.41-bp153.2.6.1fixed 1.41-bp153.2.6.1
In ConnMan through 1.41, remote attackers able to send HTTP requests to the gweb component are able to exploit a heap-based buffer overflow in received_data to execute code.
CVE-2021-4002Mar 3, 2022
affected < 1.41-bp153.2.3.1fixed 1.41-bp153.2.3.1
A memory leak flaw in the Linux kernel's hugetlbfs memory usage was found in the way the user maps some regions of memory twice using shmget() which are aligned to PUD alignment with the fault of some of the memory pages. A local user could use this flaw to get unauthorized acces
CVE-2021-4001Jan 21, 2022
affected < 1.41-bp153.2.3.1fixed 1.41-bp153.2.3.1
A race condition was found in the Linux kernel's ebpf verifier between bpf_map_update_elem and bpf_map_freeze due to a missing lock in kernel/bpf/syscall.c. In this flaw, a local user with a special privilege (cap_sys_admin or cap_bpf) can modify the frozen mapped address space.
CVE-2021-28715Jan 6, 2022
affected < 1.41-bp153.2.3.1fixed 1.41-bp153.2.3.1
Guest can force Linux netback driver to hog large amounts of kernel memory T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Incoming data packets for a guest in the Linux kernel's netback driver are b
CVE-2021-28714Jan 6, 2022
affected < 1.41-bp153.2.3.1fixed 1.41-bp153.2.3.1
Guest can force Linux netback driver to hog large amounts of kernel memory T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Incoming data packets for a guest in the Linux kernel's netback driver are b
CVE-2021-28713Jan 5, 2022
affected < 1.41-bp153.2.3.1fixed 1.41-bp153.2.3.1
Rogue backends can cause DoS of guests via high frequency events T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Xen offers the ability to run PV backends in regular unprivileged guests, typically re
CVE-2021-28712Jan 5, 2022
affected < 1.41-bp153.2.3.1fixed 1.41-bp153.2.3.1
Rogue backends can cause DoS of guests via high frequency events T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Xen offers the ability to run PV backends in regular unprivileged guests, typically re
CVE-2021-28711Jan 5, 2022
affected < 1.41-bp153.2.3.1fixed 1.41-bp153.2.3.1
Rogue backends can cause DoS of guests via high frequency events T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Xen offers the ability to run PV backends in regular unprivileged guests, typically re
CVE-2021-45485Dec 25, 2021
affected < 1.41-bp153.2.3.1fixed 1.41-bp153.2.3.1
In the IPv6 implementation in the Linux kernel before 5.13.3, net/ipv6/output_core.c has an information leak because of certain use of a hash table which, although big, doesn't properly consider that IPv6-based attackers can typically choose among many IPv6 source addresses.
CVE-2021-45486Dec 25, 2021
affected < 1.41-bp153.2.3.1fixed 1.41-bp153.2.3.1
In the IPv4 implementation in the Linux kernel before 5.12.4, net/ipv4/route.c has an information leak because the hash table is very small.
CVE-2021-33098Nov 17, 2021
affected < 1.41-bp153.2.3.1fixed 1.41-bp153.2.3.1
Improper input validation in the Intel(R) Ethernet ixgbe driver for Linux before version 3.17.3 may allow an authenticated user to potentially enable denial of service via local access.
CVE-2021-43975Nov 17, 2021
affected < 1.41-bp153.2.3.1fixed 1.41-bp153.2.3.1
In the Linux kernel through 5.15.2, hw_atl_utils_fw_rpc_wait in drivers/net/ethernet/aquantia/atlantic/hw_atl/hw_atl_utils.c allows an attacker (who can introduce a crafted device) to trigger an out-of-bounds write via a crafted length value.
CVE-2021-43976Nov 17, 2021
affected < 1.41-bp153.2.3.1fixed 1.41-bp153.2.3.1
In the Linux kernel through 5.15.2, mwifiex_usb_recv in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker (who can connect a crafted USB device) to cause a denial of service (skb_over_panic).
CVE-2020-27820Nov 2, 2021
affected < 1.41-bp153.2.3.1fixed 1.41-bp153.2.3.1
A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose() handler could happen if removing device (that is not common to remove video card physically without power-off, but same happens if "unbind" the driver).
CVE-2020-24504Feb 17, 2021
affected < 1.41-bp153.2.3.1fixed 1.41-bp153.2.3.1
Uncontrolled resource consumption in some Intel(R) Ethernet E810 Adapter drivers for Linux before version 1.0.4 may allow an authenticated user to potentially enable denial of service via local access.