Security update for connman SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2021:0416-1 Final 1 1 2021-03-16T17:06:21Z current 2021-03-16T17:06:21Z 2021-03-16T17:06:21Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for connman This update for connman fixes the following issues: Update to 1.39 (boo#1181751): * Fix issue with scanning state synchronization and iwd. * Fix issue with invalid key with 4-way handshake offloading. * Fix issue with DNS proxy length checks to prevent buffer overflow. (CVE-2021-26675) * Fix issue with DHCP leaking stack data via uninitialized variable. (CVE-2021-26676) Update to 1.38: * Fix issue with online check on IP address update. * Fix issue with OpenVPN and encrypted private keys. * Fix issue with finishing of VPN connections. * Add support for updated stable iwd APIs. * Add support for WireGuard networks. Update to 1.37: * Fix issue with handling invalid gateway addresses. * Fix issue with handling updates of default gateway. * Fix issue with DHCP servers that require broadcast flag. * Add support for option to use gateways as time servers. * Add support for option to select default technology. * Add support for Address Conflict Detection (ACD). * Add support for IPv6 iptables management. Change in 1.36: * Fix issue with DNS short response on error handling. * Fix issue with handling incoming DNS requests. * Fix issue with handling empty timeserver list. * Fix issue with incorrect DHCP byte order. * Fix issue with AllowDomainnameUpdates handling. * Fix issue with IPv4 link-local IP conflict error. * Fix issue with handling WISPr over TLS connections. * Fix issue with WiFi background scanning handling. * Fix issue with WiFi disconnect+connect race condition. * Fix issue with WiFi scanning and tethering operation. * Fix issue with WiFi security change handling. * Fix issue with missing signal for WPS changes. * Fix issue with online check retry handling. * Add support for systemd-resolved backend. * Add support for mDNS configuration setup. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-2021-416 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/OTS3LYTIBT7XMBIAK6RCJOKOTPNIEQSF/ E-Mail link for openSUSE-SU-2021:0416-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1181751 SUSE Bug 1181751 https://www.suse.com/security/cve/CVE-2021-26675/ SUSE CVE CVE-2021-26675 page https://www.suse.com/security/cve/CVE-2021-26676/ SUSE CVE CVE-2021-26676 page openSUSE Leap 15.2 connman-1.39-lp152.3.3.1 connman-client-1.39-lp152.3.3.1 connman-devel-1.39-lp152.3.3.1 connman-doc-1.39-lp152.3.3.1 connman-nmcompat-1.39-lp152.3.3.1 connman-plugin-hh2serial-gps-1.39-lp152.3.3.1 connman-plugin-iospm-1.39-lp152.3.3.1 connman-plugin-l2tp-1.39-lp152.3.3.1 connman-plugin-openconnect-1.39-lp152.3.3.1 connman-plugin-openvpn-1.39-lp152.3.3.1 connman-plugin-polkit-1.39-lp152.3.3.1 connman-plugin-pptp-1.39-lp152.3.3.1 connman-plugin-tist-1.39-lp152.3.3.1 connman-plugin-vpnc-1.39-lp152.3.3.1 connman-plugin-wireguard-1.39-lp152.3.3.1 connman-test-1.39-lp152.3.3.1 connman-1.39-lp152.3.3.1 as a component of openSUSE Leap 15.2 connman-client-1.39-lp152.3.3.1 as a component of openSUSE Leap 15.2 connman-devel-1.39-lp152.3.3.1 as a component of openSUSE Leap 15.2 connman-doc-1.39-lp152.3.3.1 as a component of openSUSE Leap 15.2 connman-nmcompat-1.39-lp152.3.3.1 as a component of openSUSE Leap 15.2 connman-plugin-hh2serial-gps-1.39-lp152.3.3.1 as a component of openSUSE Leap 15.2 connman-plugin-iospm-1.39-lp152.3.3.1 as a component of openSUSE Leap 15.2 connman-plugin-l2tp-1.39-lp152.3.3.1 as a component of openSUSE Leap 15.2 connman-plugin-openconnect-1.39-lp152.3.3.1 as a component of openSUSE Leap 15.2 connman-plugin-openvpn-1.39-lp152.3.3.1 as a component of openSUSE Leap 15.2 connman-plugin-polkit-1.39-lp152.3.3.1 as a component of openSUSE Leap 15.2 connman-plugin-pptp-1.39-lp152.3.3.1 as a component of openSUSE Leap 15.2 connman-plugin-tist-1.39-lp152.3.3.1 as a component of openSUSE Leap 15.2 connman-plugin-vpnc-1.39-lp152.3.3.1 as a component of openSUSE Leap 15.2 connman-plugin-wireguard-1.39-lp152.3.3.1 as a component of openSUSE Leap 15.2 connman-test-1.39-lp152.3.3.1 as a component of openSUSE Leap 15.2 A stack-based buffer overflow in dnsproxy in ConnMan before 1.39 could be used by network adjacent attackers to execute code. CVE-2021-26675 openSUSE Leap 15.2:connman-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-client-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-devel-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-doc-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-nmcompat-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-plugin-hh2serial-gps-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-plugin-iospm-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-plugin-l2tp-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-plugin-openconnect-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-plugin-openvpn-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-plugin-polkit-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-plugin-pptp-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-plugin-tist-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-plugin-vpnc-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-plugin-wireguard-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-test-1.39-lp152.3.3.1 moderate 5.8 AV:A/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/OTS3LYTIBT7XMBIAK6RCJOKOTPNIEQSF/ https://www.suse.com/security/cve/CVE-2021-26675.html CVE-2021-26675 https://bugzilla.suse.com/1181751 SUSE Bug 1181751 https://bugzilla.suse.com/1186869 SUSE Bug 1186869 gdhcp in ConnMan before 1.39 could be used by network-adjacent attackers to leak sensitive stack information, allowing further exploitation of bugs in gdhcp. CVE-2021-26676 openSUSE Leap 15.2:connman-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-client-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-devel-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-doc-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-nmcompat-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-plugin-hh2serial-gps-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-plugin-iospm-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-plugin-l2tp-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-plugin-openconnect-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-plugin-openvpn-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-plugin-polkit-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-plugin-pptp-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-plugin-tist-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-plugin-vpnc-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-plugin-wireguard-1.39-lp152.3.3.1 openSUSE Leap 15.2:connman-test-1.39-lp152.3.3.1 moderate 3.3 AV:A/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/OTS3LYTIBT7XMBIAK6RCJOKOTPNIEQSF/ https://www.suse.com/security/cve/CVE-2021-26676.html CVE-2021-26676 https://bugzilla.suse.com/1181751 SUSE Bug 1181751 https://bugzilla.suse.com/1186869 SUSE Bug 1186869