CVE-2022-32292

Description

In ConnMan through 1.41, remote attackers able to send HTTP requests to the gweb component are able to exploit a heap-based buffer overflow in received_data to execute code.

References

https://bugzilla.suse.com/show_bug.cgi?id=1200189

https://lore.kernel.org/connman/[email protected]/

https://www.debian.org/security/2022/dsa-5231

Details