Wind River Support Network

HomeDefectsLIN1022-14705
Acknowledged

LIN1022-14705 : Security Advisory - connman - CVE-2025-32366

Created: Apr 7, 2025    Updated: Jun 9, 2025
Found In Version: 10.22.33.1
Severity: Standard
Applicable for: Wind River Linux LTS 22
Component/s: Userspace

Description

In ConnMan through 1.44, parse_rr in dnsproxy.c has a memcpy length that depends on an RR RDLENGTH value, i.e., *rdlen=ntohs(rr->rdlen) and memcpy(response+offset,*end,*rdlen).

CREATE(Triage):(User=admin) CVE-2025-32366 (https://nvd.nist.gov/vuln/detail/CVE-2025-32366)
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube