MGASA-2023-0167 - Updated connman packages fix security vulnerability Publication date: 16 May 2023 URL: https://advisories.mageia.org/MGASA-2023-0167.html Type: security Affected Mageia releases: 8 CVE: CVE-2023-28488 client.c in gdhcp in ConnMan could be used by network-adjacent attackers (operating a crafted DHCP server) to cause a stack-based buffer overflow and denial of service, terminating the connman process. (CVE-2023-28488) References: - https://bugs.mageia.org/show_bug.cgi?id=31878 - https://www.debian.org/lts/security/2023/dla-3397 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28488 SRPMS: - 8/core/connman-1.38-2.4.mga8
Mageia 2023-0167: connman security update
client.c in gdhcp in ConnMan could be used by network-adjacent attackers (operating a crafted DHCP server) to cause a stack-based buffer overflow and denial of service, terminating...
Summary
client.c in gdhcp in ConnMan could be used by network-adjacent attackers
(operating a crafted DHCP server) to cause a stack-based buffer overflow
and denial of service, terminating the connman process. (CVE-2023-28488)
References
- https://bugs.mageia.org/show_bug.cgi?id=31878
- https://www.debian.org/lts/security/2023/dla-3397
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28488
Resolution
MGASA-2023-0167 - Updated connman packages fix security vulnerability
SRPMS
- 8/core/connman-1.38-2.4.mga8
Severity
Publication date: 16 May 2023
URL: https://advisories.mageia.org/MGASA-2023-0167.html
Type: security
CVE: CVE-2023-28488
News
HOWTOs
About Us
Powered By
