vulnerability

Ubuntu: USN-6236-1 (CVE-2022-23096): ConnMan vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
6	(AV:N/AC:L/Au:N/C:P/I:N/A:P)	Jan 28, 2022	Jul 20, 2023	Mar 27, 2026

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:N/A:P)

Published

Jan 28, 2022

Added

Jul 20, 2023

Modified

Mar 27, 2026

Description

An issue was discovered in the DNS proxy in Connman through 1.40. The TCP server reply implementation lacks a check for the presence of sufficient Header Data, leading to an out-of-bounds read.

Solution

ubuntu-pro-upgrade-connman

References

CVE-2022-23096
https://attackerkb.com/topics/CVE-2022-23096
CWE-125
DEBIAN-DSA-5231
EUVD-EUVD-2022-28201
UBUNTU-USN-6236-1
https://euvd.enisa.europa.eu/vulnerability/EUVD-2022-28201

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today