vulnerability

SUSE: CVE-2023-28488: SUSE Linux Security Advisory

Severity
6
CVSS
(AV:A/AC:L/Au:N/C:N/I:N/A:C)
Published
Apr 12, 2023
Added
Nov 15, 2023
Modified
Jan 28, 2025

Description

client.c in gdhcp in ConnMan through 1.41 could be used by network-adjacent attackers (operating a crafted DHCP server) to cause a stack-based buffer overflow and denial of service, terminating the connman process.

Solution(s)

suse-upgrade-connmansuse-upgrade-connman-clientsuse-upgrade-connman-develsuse-upgrade-connman-docsuse-upgrade-connman-nmcompatsuse-upgrade-connman-plugin-hh2serial-gpssuse-upgrade-connman-plugin-iospmsuse-upgrade-connman-plugin-l2tpsuse-upgrade-connman-plugin-openvpnsuse-upgrade-connman-plugin-polkitsuse-upgrade-connman-plugin-pptpsuse-upgrade-connman-plugin-tistsuse-upgrade-connman-plugin-vpncsuse-upgrade-connman-plugin-wireguardsuse-upgrade-connman-test
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.