Multiple vulnerabilities have been found in ConnMan, the worst of which could result in the remote execution of code.
|Package||net-misc/connman on all architectures|
|Affected versions||< 1.35-r1|
|Unaffected versions||>= 1.35-r1|
ConnMan provides a daemon for managing Internet connections.
Multiple vulnerabilities have been discovered in ConnMan. Please review the CVE identifiers referenced below for details.
A remote attacker, via a crafted DNS packet, could remotely execute code or cause a Denial of Service condition.
There is no known workaround at this time.
All ConnMan users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=net-misc/connman-1.35-r1"