Bugzilla – Bug 1181751
VUL-0: CVE-2021-26675, CVE-2021-26676: connman: mutliple issues in DNS handling
Last modified: 2021-03-20 17:16:44 UTC
So as far as I see the gdhcp bugs are exploited to retrieve the stack layout via infoleak and the buffer overflow is exploited in dnsproxy. So I requested: - 1 CVE for the info leak via gdhcp - 1 CVE for the buffer overflow in dnsproxy before 1.39
CVE-2021-26675 for the buffer overflow CVE-2021-26676 for the info leak
CRD: 2021-02-08 9:00UTC
is public
submit for factory also received
This is an autogenerated message for OBS integration: This bug (1181751) was mentioned in https://build.opensuse.org/request/show/876388 Factory / connman https://build.opensuse.org/request/show/876402 15.2 / connman
openSUSE-SU-2021:0416-1: An update that fixes two vulnerabilities is now available. Category: security (moderate) Bug References: 1181751 CVE References: CVE-2021-26675,CVE-2021-26676 JIRA References: Sources used: openSUSE Leap 15.2 (src): connman-1.39-lp152.3.3.1
openSUSE-SU-2021:0452-1: An update that fixes two vulnerabilities is now available. Category: security (moderate) Bug References: 1181751 CVE References: CVE-2021-26675,CVE-2021-26676 JIRA References: Sources used: openSUSE Backports SLE-15-SP2 (src): connman-1.39-bp152.4.3.1