Search CVE reports
1 – 10 of 21 results
In ConnMan through 1.44, the lookup string in ns_resolv in dnsproxy.c can be NULL or an empty string when the TC (Truncated) bit is set in a DNS response. This allows attackers to cause a denial of service (application crash) or...
1 affected package
connman
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| connman | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
In ConnMan through 1.44, parse_rr in dnsproxy.c has a memcpy length that depends on an RR RDLENGTH value, i.e., *rdlen=ntohs(rr->rdlen) and memcpy(response+offset,*end,*rdlen) without a check for whether the sum of *end and *rdlen...
1 affected package
connman
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| connman | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An...
29 affected packages
gadmin-openvpn-client, gadmin-openvpn-server, kvpnc, mozillavpn, pptpd...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| gadmin-openvpn-client | Not in release | Not in release | Ignored | Ignored |
| gadmin-openvpn-server | Not in release | Not in release | Ignored | Ignored |
| kvpnc | Not in release | Not in release | Not in release | Ignored |
| mozillavpn | Not in release | Ignored | Not in release | — |
| pptpd | Not in release | Ignored | Ignored | Ignored |
| openvpn | Ignored | Ignored | Ignored | Ignored |
| libreswan | Ignored | Ignored | Ignored | Ignored |
| n2n | Ignored | Ignored | Ignored | Ignored |
| connman | Ignored | Ignored | Ignored | Ignored |
| golang-github-apparentlymart-go-openvpn-mgmt | Ignored | Ignored | Ignored | — |
| network-manager-fortisslvpn | Ignored | Ignored | Ignored | Ignored |
| network-manager-iodine | Ignored | Ignored | Ignored | Ignored |
| network-manager-l2tp | Ignored | Ignored | Ignored | Ignored |
| network-manager-openconnect | Ignored | Ignored | Ignored | Ignored |
| network-manager-openvpn | Ignored | Ignored | Ignored | Ignored |
| network-manager-pptp | Ignored | Ignored | Ignored | Ignored |
| network-manager-sstp | Ignored | Ignored | Not in release | — |
| network-manager-strongswan | Ignored | Ignored | Ignored | Ignored |
| network-manager-vpnc | Ignored | Ignored | Ignored | Ignored |
| openconnect | Ignored | Ignored | Ignored | Ignored |
| openfortivpn | Ignored | Ignored | Ignored | Ignored |
| pptp-linux | Ignored | Ignored | Ignored | Ignored |
| quicktun | Ignored | Ignored | Ignored | Ignored |
| riseup-vpn | Ignored | Not in release | Not in release | — |
| softether-vpn | Ignored | Ignored | Not in release | — |
| sshuttle | Ignored | Ignored | Ignored | Ignored |
| tinc | Ignored | Ignored | Ignored | Ignored |
| vpnc | Ignored | Ignored | Ignored | Ignored |
| wireguard | Ignored | Ignored | Ignored | Ignored |
An issue was discovered in Avira Phantom VPN through 2.23.1 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the VPN server's IP address is sent in plaintext outside the VPN tunnel,...
31 affected packages
connman, gadmin-openvpn-client, gadmin-openvpn-server, golang-github-apparentlymart-go-openvpn-mgmt, kvpnc...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| connman | Not affected | Not affected | Not affected | Not affected |
| gadmin-openvpn-client | Not in release | Not in release | Not affected | Not affected |
| gadmin-openvpn-server | Not in release | Not in release | Not affected | Not affected |
| golang-github-apparentlymart-go-openvpn-mgmt | Not affected | Not affected | Not affected | Not in release |
| kvpnc | Not in release | Not in release | Not in release | Not affected |
| l2tp-ipsec-vpn-daemon | Not in release | Not in release | Not in release | Not in release |
| l2tp-ipsec-vpn | Not in release | Not in release | Not in release | Not in release |
| libreswan | Not affected | Not affected | Not affected | Not affected |
| mozillavpn | Not in release | Not affected | Not in release | Not in release |
| n2n | Not affected | Not affected | Not affected | Not affected |
| network-manager-fortisslvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-iodine | Not affected | Not affected | Not affected | Not affected |
| network-manager-l2tp | Not affected | Not affected | Not affected | Not affected |
| network-manager-openconnect | Not affected | Not affected | Not affected | Not affected |
| network-manager-openvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-pptp | Not affected | Not affected | Not affected | Not affected |
| network-manager-sstp | Not affected | Not affected | Not in release | Not in release |
| network-manager-strongswan | Not affected | Not affected | Not affected | Not affected |
| network-manager-vpnc | Not affected | Not affected | Not affected | Not affected |
| openfortivpn | Not affected | Not affected | Not affected | Not affected |
| openvpn | Not affected | Not affected | Not affected | Not affected |
| pptp-linux | Not affected | Not affected | Not affected | Not affected |
| quicktun | Not affected | Not affected | Not affected | Not affected |
| riseup-vpn | Not affected | Not in release | Not in release | Not in release |
| sshuttle | Not affected | Not affected | Not affected | Not affected |
| tinc | Not affected | Not affected | Not affected | Not affected |
| vpnc | Not affected | Not affected | Not affected | Not affected |
| wireguard | Not affected | Not affected | Not affected | Not affected |
| zentyal-openvpn | Not in release | Not in release | Not in release | Not in release |
| openconnect | Not affected | Not affected | Not affected | Not affected |
| softether-vpn | Not affected | Not affected | Not in release | Not in release |
An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that traffic to the local network is sent in plaintext outside the VPN tunnel even if...
31 affected packages
connman, gadmin-openvpn-client, gadmin-openvpn-server, golang-github-apparentlymart-go-openvpn-mgmt, kvpnc...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| connman | Not affected | Not affected | Not affected | Not affected |
| gadmin-openvpn-client | Not in release | Not in release | Not affected | Not affected |
| gadmin-openvpn-server | Not in release | Not in release | Not affected | Not affected |
| golang-github-apparentlymart-go-openvpn-mgmt | Not affected | Not affected | Not affected | Not in release |
| kvpnc | Not in release | Not in release | Not in release | Not affected |
| l2tp-ipsec-vpn-daemon | Not in release | Not in release | Not in release | Not in release |
| l2tp-ipsec-vpn | Not in release | Not in release | Not in release | Not in release |
| libreswan | Not affected | Not affected | Not affected | Not affected |
| mozillavpn | Not in release | Not affected | Not in release | Not in release |
| n2n | Not affected | Not affected | Not affected | Not affected |
| network-manager-fortisslvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-iodine | Not affected | Not affected | Not affected | Not affected |
| network-manager-l2tp | Not affected | Not affected | Not affected | Not affected |
| network-manager-openconnect | Not affected | Not affected | Not affected | Not affected |
| network-manager-openvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-pptp | Not affected | Not affected | Not affected | Not affected |
| network-manager-sstp | Not affected | Not affected | Not in release | Not in release |
| network-manager-strongswan | Not affected | Not affected | Not affected | Not affected |
| network-manager-vpnc | Not affected | Not affected | Not affected | Not affected |
| openconnect | Not affected | Not affected | Not affected | Not affected |
| openfortivpn | Not affected | Not affected | Not affected | Not affected |
| openvpn | Not affected | Not affected | Not affected | Not affected |
| pptp-linux | Not affected | Not affected | Not affected | Not affected |
| quicktun | Not affected | Not affected | Not affected | Not affected |
| riseup-vpn | Not affected | Not in release | Not in release | Not in release |
| sshuttle | Not affected | Not affected | Not affected | Not affected |
| tinc | Not affected | Not affected | Not affected | Not affected |
| vpnc | Not affected | Not affected | Not affected | Not affected |
| wireguard | Ignored | Ignored | Not affected | Ignored |
| zentyal-openvpn | Not in release | Not in release | Not in release | Not in release |
| softether-vpn | Not affected | Not affected | Not in release | Not in release |
An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the VPN server's IP address is sent in plaintext outside the VPN...
31 affected packages
connman, gadmin-openvpn-client, gadmin-openvpn-server, golang-github-apparentlymart-go-openvpn-mgmt, kvpnc...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| connman | Not affected | Not affected | Not affected | Not affected |
| gadmin-openvpn-client | Not in release | Not in release | Not affected | Not affected |
| gadmin-openvpn-server | Not in release | Not in release | Not affected | Not affected |
| golang-github-apparentlymart-go-openvpn-mgmt | Not affected | Not affected | Not affected | Not in release |
| kvpnc | Not in release | Not in release | Not in release | Not affected |
| l2tp-ipsec-vpn-daemon | Not in release | Not in release | Not in release | Not in release |
| l2tp-ipsec-vpn | Not in release | Not in release | Not in release | Not in release |
| libreswan | Not affected | Not affected | Not affected | Not affected |
| mozillavpn | Not in release | Not affected | Not in release | Not in release |
| n2n | Not affected | Not affected | Not affected | Not affected |
| network-manager-fortisslvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-iodine | Not affected | Not affected | Not affected | Not affected |
| network-manager-l2tp | Not affected | Not affected | Not affected | Not affected |
| network-manager-openconnect | Not affected | Not affected | Not affected | Not affected |
| network-manager-openvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-pptp | Not affected | Not affected | Not affected | Not affected |
| network-manager-sstp | Not affected | Not affected | Not in release | Not in release |
| network-manager-strongswan | Not affected | Not affected | Not affected | Not affected |
| network-manager-vpnc | Not affected | Not affected | Not affected | Not affected |
| openfortivpn | Not affected | Not affected | Not affected | Not affected |
| openconnect | Not affected | Not affected | Not affected | Not affected |
| openvpn | Not affected | Not affected | Not affected | Not affected |
| pptp-linux | Not affected | Not affected | Not affected | Not affected |
| quicktun | Not affected | Not affected | Not affected | Not affected |
| riseup-vpn | Not affected | Not in release | Not in release | Not in release |
| sshuttle | Not affected | Not affected | Not affected | Not affected |
| tinc | Not affected | Not affected | Not affected | Not affected |
| vpnc | Not affected | Not affected | Not affected | Not affected |
| wireguard | Not affected | Not affected | Not affected | Not affected |
| zentyal-openvpn | Not in release | Not in release | Not in release | Not in release |
| softether-vpn | Not affected | Not affected | Not in release | Not in release |
The WireGuard client 0.5.3 on Windows insecurely configures the operating system and firewall such that traffic to a local network that uses non-RFC1918 IP addresses is blocked. This allows an adversary to trick the victim into...
31 affected packages
connman, gadmin-openvpn-client, gadmin-openvpn-server, golang-github-apparentlymart-go-openvpn-mgmt, kvpnc...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| connman | Not affected | Not affected | Not affected | Not affected |
| gadmin-openvpn-client | Not in release | Not in release | Not affected | Not affected |
| gadmin-openvpn-server | Not in release | Not in release | Not affected | Not affected |
| golang-github-apparentlymart-go-openvpn-mgmt | Not affected | Not affected | Not affected | Not in release |
| kvpnc | Not in release | Not in release | Not in release | Not affected |
| l2tp-ipsec-vpn-daemon | Not in release | Not in release | Not in release | Not in release |
| l2tp-ipsec-vpn | Not in release | Not in release | Not in release | Not in release |
| libreswan | Not affected | Not affected | Not affected | Not affected |
| mozillavpn | Not in release | Not affected | Not in release | Not in release |
| n2n | Not affected | Not affected | Not affected | Not affected |
| network-manager-fortisslvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-iodine | Not affected | Not affected | Not affected | Not affected |
| network-manager-l2tp | Not affected | Not affected | Not affected | Not affected |
| network-manager-openconnect | Not affected | Not affected | Not affected | Not affected |
| network-manager-openvpn | Not affected | Not affected | Not affected | Not affected |
| network-manager-pptp | Not affected | Not affected | Not affected | Not affected |
| network-manager-sstp | Not affected | Not affected | Not in release | Not in release |
| network-manager-strongswan | Not affected | Not affected | Not affected | Not affected |
| network-manager-vpnc | Not affected | Not affected | Not affected | Not affected |
| openconnect | Not affected | Not affected | Not affected | Not affected |
| openfortivpn | Not affected | Not affected | Not affected | Not affected |
| openvpn | Not affected | Not affected | Not affected | Not affected |
| pptp-linux | Not affected | Not affected | Not affected | Not affected |
| quicktun | Not affected | Not affected | Not affected | Not affected |
| riseup-vpn | Not affected | Not in release | Not in release | Not in release |
| sshuttle | Not affected | Not affected | Not affected | Not affected |
| tinc | Not affected | Not affected | Not affected | Not affected |
| vpnc | Not affected | Not affected | Not affected | Not affected |
| wireguard | Ignored | Ignored | Ignored | Ignored |
| zentyal-openvpn | Not in release | Not in release | Not in release | Not in release |
| softether-vpn | Not affected | Not affected | Not in release | Not in release |
Some fixes available 5 of 6
client.c in gdhcp in ConnMan through 1.41 could be used by network-adjacent attackers (operating a crafted DHCP server) to cause a stack-based buffer overflow and denial of service, terminating the connman process.
1 affected package
connman
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| connman | — | Fixed | Fixed | Fixed |
In ConnMan through 1.41, a man-in-the-middle attack against a WISPR HTTP query could be used to trigger a use-after-free in WISPR handling, leading to crashes or code execution.
1 affected package
connman
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| connman | — | Fixed | Fixed | Fixed |
In ConnMan through 1.41, remote attackers able to send HTTP requests to the gweb component are able to exploit a heap-based buffer overflow in received_data to execute code.
1 affected package
connman
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| connman | — | Fixed | Fixed | Fixed |