connman 1.36-2ubuntu0.1 source package in Ubuntu
Changelog
connman (1.36-2ubuntu0.1) focal-security; urgency=medium
* SECURITY UPDATE: Stack-based buffer overflow
- debian/patches/dnsproxy-Add-length-checks-to-prevent-buffer-overflo.patch:
Add length checks to prevent buffer overflow.
- CVE-2021-26675
* SECURITY UPDATE: Sensitive information exposure
- debian/patches/gdhcp-Avoid-reading-invalid-data-in-dhcp_get_option.patch:
Avoid reading invalid data in dhcp_get_option
- debian/patches/gdhcp-Avoid-leaking-stack-data-via-unitiialized-vari.patch:
Avoid leaking stack data via unitiialized variable.
- CVE-2021-26676
* SECURITY UPDATE: Stack-based buffer overflow
- debian/patches/dnsproxy-Check-the-length-of-buffers-before-memcpy.patch:
Check the length of buffers before memcpy.
- CVE-2021-33833
* SECURITY UPDATE: Out-of-bounds read
- debian/patches/dnsproxy-Simplify-udp_server_event.patch:
Simplify udp_server_event()
- debian/patches/dnsproxy-Validate-input-data-before-using-them.patch:
Validate input data before using them.
- CVE-2022-23096
- CVE-2022-23097
* SECURITY UPDATE: Denial-of-service
- debian/patches/dnsproxy-Avoid-100-busy-loop-in-TCP-server-case.patch:
Avoid 100 % busy loop in TCP server case.
- debian/patches/dnsproxy-Keep-timeout-in-TCP-case-even-after-connect.patch:
Keep timeout in TCP case even after connection is established.
- CVE-2022-23098
* SECURITY UPDATE: Heap-based buffer overflow
- debian/patches/gweb-Fix-OOB-write-in-received_data.patch: Fix OOB
write in received_data().
- CVE-2022-32292
* SECURITY UPDATE: Use-after-free
- debian/patches/wispr-Add-reference-counter-to-portal-context.patch:
Add reference counter to portal context.
- debian/patches/wispr-Update-portal-context-references.patch: Update
portal context references.
- CVE-2022-32293
* SECURITY UPDATE: Stack-based buffer overflow
- debian/patches/CVE-2023-28488.patch: Verify and sanitize packet
length first.
- CVE-2023-28488
-- Fabian Toepfer <email address hidden> Tue, 27 Jun 2023 16:39:51 +0200
Upload details
- Uploaded by:
- Fabian Toepfer
- Uploaded to:
- Focal
- Original maintainer:
- Ubuntu Developers
- Architectures:
- linux-any all
- Section:
- net
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Focal | updates | universe | net | |
| Focal | security | universe | net |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| connman_1.36.orig.tar.xz | 676.4 KiB | c789db41cc443fa41e661217ea321492ad59a004bebcd1aa013f3bc10a6e0074 |
| connman_1.36-2ubuntu0.1.debian.tar.xz | 21.0 KiB | a59b8debed0dae5fbed3695b44fdf756d8cc4733faa65674ca82bba3a7ad5aa0 |
| connman_1.36-2ubuntu0.1.dsc | 2.3 KiB | 7f23d6d51f1d887f76e53f33fe5dd6bc0e262e23d39110230790d1cd53b6fa61 |
Available diffs
Binary packages built by this source
- connman: Intel Connection Manager daemon
The Linux Connection Manager project provides a daemon for managing
Internet connections within embedded devices running the Linux
operating system. The Connection Manager is designed to be slim and to
use as few resources as possible. It is fully modular system that
can be extended through plug-ins. The plug-in approach allows for
easy adaption and modification for various use cases.
.
ConnMan provies IPv4 and IPv6 connectivity via:
* ethernet
* WiFi, using wpasupplicant
* Cellular, using oFono
* Bluetooth, using bluez
.
ConnMan implements DNS resolving and caching, DHCP clients for both IPv4 and
IPv6, link-local IPv4 address handling and tethering (IP connection sharing)
to clients via USB, ethernet, WiFi, cellular and Bluetooth.
.
This package contains the connman daemon and its plugins.
- connman-dbgsym: debug symbols for connman
- connman-dev: Development files for connman
The Linux Connection Manager project provides a daemon for managing
Internet connections within embedded devices running the Linux
operating system. The Connection Manager is designed to be slim and to
use as few resources as possible. It is fully modular system that
can be extended through plug-ins. The plug-in approach allows for
easy adaption and modification for various use cases.
.
ConnMan provies IPv4 and IPv6 connectivity via:
* ethernet
* WiFi, using wpasupplicant
* Cellular, using oFono
* Bluetooth, using bluez
.
ConnMan implements DNS resolving and caching, DHCP clients for both IPv4 and
IPv6, link-local IPv4 address handling and tethering (IP connection sharing)
to clients via USB, ethernet, WiFi, cellular and Bluetooth.
.
This package contains headers, pkg-config support mainly useful for
developing connman plugins.
- connman-doc: ConnMan documentation
The Linux Connection Manager project provides a daemon for managing
Internet connections within embedded devices running the Linux
operating system.
.
This package contains the connman API documentation.
.
See the connman description for more information regarding connman.
- connman-vpn: Intel Connection Manager daemon - VPN daemon
The Linux Connection Manager project provides a daemon for managing
Internet connections within embedded devices running the Linux
operating system. The Connection Manager is designed to be slim and to
use as few resources as possible. It is fully modular system that
can be extended through plug-ins. The plug-in approach allows for
easy adaption and modification for various use cases.
.
ConnMan provies IPv4 and IPv6 connectivity via:
* ethernet
* WiFi, using wpasupplicant
* Cellular, using oFono
* Bluetooth, using bluez
.
ConnMan implements DNS resolving and caching, DHCP clients for both IPv4 and
IPv6, link-local IPv4 address handling and tethering (IP connection sharing)
to clients via USB, ethernet, WiFi, cellular and Bluetooth.
.
This package contains the connman VPN daemon. ConnMan VPN daemon manages
VPNs on behalf of connmand and start and stops various VPN client
applications. The VPN daemon can also be run standalone without connmand.
- connman-vpn-dbgsym: debug symbols for connman-vpn
