Headline
CVE-2022-23098: connman/connman.git - Connection Manager
An issue was discovered in the DNS proxy in Connman through 1.40. The TCP server reply implementation has an infinite loop if no data is received.
AgeCommit message (Expand)AuthorFilesLines 102 min.Release 1.41HEAD1.41masterMarcel Holtmann2-1/+9 3 daysunit: Fix missing declarations in test-iptablesEmmanuel VAUTRIN1-2/+2 3 daysAUTHORS: Add Matthias’ contributionsDaniel Wagner1-0/+1 3 daysdnsproxy: Keep timeout in TCP case even after connection is establishedMatthias Gerstner1-5/+0 3 daysdnsproxy: Avoid 100 % busy loop in TCP server caseMatthias Gerstner1-0/+12 3 daysdnsproxy: Validate input data before using themDaniel Wagner1-5/+26 3 daysdnsproxy: Update TCP length headerMatthias Gerstner1-0/+3 3 daysmain: Use g_strdup for online_check_ipv{4,6}_url configDaniel Wagner1-2/+9 5 daysservice: Fix native connection with wrong passphraseEmmanuel VAUTRIN1-0/+9 7 daysiwd: Mark only reachable networks as availableEmmanuel VAUTRIN1-1/+3 7 daysiwd: Fix connection with no passphraseEmmanuel VAUTRIN1-0/+2 7 daysiwd: Fix station in scan callbackVAUTRIN Emmanuel (Canal Plus Prestataire)1-1/+1 2021-12-19AUTHORS: Mention Christian’s contributionsDaniel Wagner1-0/+1 2021-12-19ipconfig: Do not enable/disable ipv6 for all ifsChristian Taedcke1-0/+6 2021-12-19Add ObjectManager interface to connmanMichael Trimarchi1-1/+1 2021-11-18service: Support hot-plug of technologies by updating ipconfig indexJussi Laakkonen1-2/+15 2021-11-18openvpn: Improve configuration value processingJussi Laakkonen1-44/+76 2021-11-18vpn-provider: Support checking if provider setting key exists.Jussi Laakkonen2-0/+8 2021-10-26tether: Fix connman_technology_get_wifi_tetheringMichael Trimarchi1-2/+6 2021-10-20dnsproxy: Fix uninitialized false positive in dnsproxyEmmanuel VAUTRIN1-1/+1 2021-10-20tools: Fix uninitialized errors in iptables testsEmmanuel VAUTRIN2-2/+2 2021-10-20config: Cleanup of iwd provision_service_wifi()Emmanuel VAUTRIN1-4/+2 2021-10-15gsupplicant: Fix error return typeDaniel Wagner1-2/+2 2021-10-15inet: Remove unused ipv6_addr_advert_multDaniel Wagner1-7/+0 2021-10-15build: Only enable -Wcast-align for gccDaniel Wagner1-1/+3 2021-10-15client: Update the connmactl to support optional tethering channelMichael Trimarchi1-14/+46 2021-10-15tethering: Add TetheringFreq parameter documentationMichael Trimarchi1-0/+7 2021-10-15tethering: Add possibility to configure the access point frequencyMichael Trimarchi5-7/+52 2021-10-15tethering: Reduce the number of parameters of tech_set_tetheringMichael Trimarchi8-32/+33 2021-10-04AUTHORS: Mention Michael’s contributionsDaniel Wagner1-0/+1 2021-10-04manager: Add TetheringClientsChanged GBUS_SIGNALMichael Trimarchi1-0/+3 2021-10-04service: Report errors to user in native modeVAUTRIN Emmanuel (Canal Plus Prestataire)1-1/+2 2021-10-04iwd: Fix timeout error on new connectionVAUTRIN Emmanuel (Canal Plus Prestataire)1-1/+1 2021-10-04iwd: Fix improper IPv4/6 attributes when disconnectingVAUTRIN Emmanuel (Canal Plus Prestataire)1-0/+2 2021-10-04iwd: Fix missing Ethernet attributesVAUTRIN Emmanuel (Canal Plus Prestataire)1-7/+8 2021-09-13doc: Document AuthErrorLimit in VPN connection APIJussi Laakkonen1-0/+13 2021-09-13openvpn: Default to 10 AuthErrorLimit unless set by userJussi Laakkonen1-0/+9 2021-09-13vpn-provider: Add auth error check heuristic to avoid losing credsJussi Laakkonen2-0/+112 2021-09-13vpn-provider: Ignore error adding when state is idle/unknownJussi Laakkonen1-0/+15 2021-09-13vpn: Report EALREADY back to caller if VPN is already disconnectingJussi Laakkonen1-1/+2 2021-09-13gsupplicant: Add support for WPA3-Personal transition modeAriel D’Alessandro1-10/+19 2021-08-31doc: Add new openconnect input fieldsLukáš Karas1-0/+13 2021-08-30openconnect: Add support for 2nd passwordLukáš Karas2-2/+85 2021-08-30vpn: Refactor connect_reply() and handle NoCarrier -> ENOLINK errorJussi Laakkonen1-2/+12 2021-08-30vpn-provider: Implement connmand online state checkingJussi Laakkonen1-1/+356 2021-08-30service: Do not trigger wispr start when EnableOnlineCheck is disabledDaniel Wagner1-0/+6 2021-08-30service: Move wispr start code into helperDaniel Wagner1-16/+15 2021-08-29network: Do not disconnect decice on network connectDaniel Wagner1-2/+0 2021-08-29service: Prevent auto connection during passphrase requestVAUTRIN Emmanuel (Canal Plus Prestataire)1-0/+25 2021-08-29wispr: Add online check url config optionsVAUTRIN Emmanuel (Canal Plus Prestataire)5-15/+68 2021-08-29service: Fix default service update on ready stateVAUTRIN Emmanuel (Canal Plus Prestataire)1-2/+2 2021-08-29service: Ignore state information in service reorderingVAUTRIN Emmanuel (Canal Plus Prestataire)1-2/+1 2021-08-17pptp: Improve invalid auth and disconnect notify, fix cb useJussi Laakkonen1-43/+84 2021-08-17l2tp: Improve invalid auth and disconnect notify, fix cb useJussi Laakkonen1-40/+75 2021-08-17l2tp: Create control file for xl2tpdMatt Vogt1-2/+16 2021-07-28gdhcp: Do not process missing DHCP_SERVER_ID fieldsDaniel Wagner1-0/+5 2021-07-26service: service_update_preferred_order cleanupVAUTRIN Emmanuel (Canal Plus Prestataire)1-17/+5 2021-07-20AUTHORS: Fix Rahul’s email addressDaniel Wagner1-1/+1 2021-07-20main: Fix a memory leak for str_list in parse_configRahul Jain1-0/+2 2021-07-02service: apply_relevant_default_downgrade cleanupVAUTRIN Emmanuel (Canal Plus Prestataire)1-7/+3 2021-07-02service: Let PreferredTechnologies overrule connected service sortingDaniel Wagner1-13/+27 2021-06-30agent: Always inform upper layer via callbackDaniel Wagner1-1/+1 2021-06-23service: Ask for password when using native autoconnectDaniel Wagner1-1/+2 2021-06-23iwd: Do not try to handle out of memory failsDaniel Wagner1-38/+6 2021-06-23vpn-rtnl: Fix netlink message alignmentDaniel Wagner1-63/+62 2021-06-23rtnl: Fix netlink message alignmentDaniel Wagner1-63/+62 2021-06-21README: Add IRC channel infoDaniel Wagner1-0/+4 2021-06-21AUTHORS: Mention Lukáš’ contributionsDaniel Wagner1-0/+1 2021-06-21dnsproxy: Replace strncopy by memcpyLukáš Karas1-1/+1 2021-06-14AUTHORS: Mention Ariel’s contributionsDaniel Wagner1-0/+1 2021-06-14wifi: Add wpa_supplicant WPA3-SAE supportAriel D’Alessandro3-3/+57 2021-06-10Release 1.401.40Marcel Holtmann2-1/+6 2021-06-09AUTHORS: Mention Alyssa’s contributionsDaniel Wagner1-0/+1 2021-06-09README: fix typoAlyssa Ross1-1/+1 2021-06-07AUTHORS: Mention Valery’s contributionsDaniel Wagner1-0/+1 2021-06-07dnsproxy: Check the length of buffers before memcpyValery Kashcheev1-9/+11 2021-06-02README: Update mailing list infoDaniel Wagner1-2/+8 2021-05-14README: Remove the 01.org website and the 01.org JiraMarcel Holtmann1-5/+1 2021-05-13main: Cleanup of vendor class id and wifi config optionsVAUTRIN Emmanuel (Canal Plus Prestataire)7-46/+10 2021-05-05wispr: Support of common redirection status codesVAUTRIN Emmanuel (Canal Plus Prestataire)1-0/+5 2021-04-27timerserver: Fix time update manual->autoDaniel Wagner1-2/+2 2021-04-25service: Disable native autoconnect calls for providersDaniel Wagner1-2/+2 2021-04-18peer: Open code g_memdupDaniel Wagner1-1/+4 2021-04-18wifi: Open code g_memdupDaniel Wagner1-7/+18 2021-04-18Rewrite openconnect plugin to use libopenconnectSanttu Lakkala3-382/+525 2021-04-18service: Teach autoconnect algorithm native modeDaniel Wagner2-29/+56 2021-04-18network: Add __connman_network_native_autoconnect()Daniel Wagner2-0/+8 2021-04-18iwd: Filter out connect failure for auto connect modeDaniel Wagner1-1/+1 2021-04-18iwd: Init AutoConnect of know networksDaniel Wagner1-0/+26 2021-04-18service: Factor auto connect trigger code into a new functionDaniel Wagner1-34/+40 2021-04-18service: Remove unused __connman_service_disconnect_all()Daniel Wagner2-31/+0 2021-04-05wireguard: Copy interfance names obeying lengths rulesDaniel Wagner1-1/+1 2021-04-05ethernet: Copy interfance names obeying lengths rulesDaniel Wagner1-5/+7 2021-04-05ipconfig: Refactor /proc value get/set to separate functionsJussi Laakkonen1-85/+97 2021-04-05service: Sort VPNs using the transport service if connectedJussi Laakkonen1-0/+45 2021-04-05provider: Add function to get transport ident from VPNJussi Laakkonen2-0/+11 2021-04-05vpn: Return transport ident with get_property()Jussi Laakkonen1-7/+15 2021-03-27dnsproxy: Enable DNS servers on connected VPN if split routing changesJussi Laakkonen1-0/+11 2021-03-27timeserver: Fix false error messageJustin Maggard1-1/+1 2021-03-27iwd: Fix typo in error message when stopping AccessPoint modeJonathan Liu1-1/+1 2021-03-27service: Allow only user connection after WiFi failureVAUTRIN Emmanuel (Canal Plus Prestataire)1-4/+10 2021-03-27service: Fix disconnection search before connectingVAUTRIN Emmanuel (Canal Plus Prestataire)1-1/+1 2021-03-27service: Complete only after user connection retriesVAUTRIN Emmanuel (Canal Plus Prestataire)1-0/+3 2021-03-27mailmap: Update non-canonical log entriesDaniel Wagner1-0/+3 2021-02-24service: Add online to ready transition featureEmmanuel VAUTRIN6-13/+78 2021-02-22service: Fix integer type for online check intervalDaniel Wagner1-3/+3 2021-02-15service: Add online check interval config optionsVAUTRIN Emmanuel (Canal Plus Prestataire)5-19/+88 2021-02-15wifi: Reset disconnecting status of any networkVAUTRIN Emmanuel (Canal Plus Prestataire)1-1/+2 2021-02-10wifi: Check valid network in disconnect callbackVAUTRIN Emmanuel (Canal Plus Prestataire)1-1/+2 2021-02-08Release 1.391.39Marcel Holtmann2-1/+7 2021-02-05AUTHORS: Mention Colin’s contributionsDaniel Wagner1-0/+1 2021-02-05dnsproxy: Add length checks to prevent buffer overflowColin Wee1-3/+11 2021-02-05gdhcp: Avoid leaking stack data via unitiialized variableColin Wee1-1/+1 2021-02-05gdhcp: Avoid reading invalid data in dhcp_get_optionColin Wee4-20/+38 2021-02-05service: Restart online check when default service changesVAUTRIN Emmanuel (Canal Plus Prestataire)1-0/+10 2021-02-05timeserver: Reset time sync on system timeserver updateVAUTRIN Emmanuel (Canal Plus Prestataire)1-1/+2 2021-02-05clock: Add TimeSynced signal emitted when the system time has been syncedVAUTRIN Emmanuel (Canal Plus Prestataire)4-1/+67 2021-01-25AUTHORS: Mention Gabriel’s contributionsDaniel Wagner1-0/+1 2021-01-25wifi: Always disconnect connection completelyGabriel FORTE1-8/+37 2020-12-28timeserver: Split new service and configuration updateDaniel Wagner3-27/+33 2020-12-28services: Escape passphrase stringDaniel Wagner2-7/+17 2020-12-23wifi: Base BSS expiration age on long scanning intervalEmmanuel VAUTRIN1-0/+21 2020-12-22wifi: Fix wireless interface not being added to tether bridge sometimesJonathan Liu1-4/+5 2020-12-22openvpn: Update documemtation for --protoDaniel Wagner1-1/+1 2020-12-22vpnc: Do not lose credentials with VPN agent timeoutsJussi Laakkonen1-6/+15 2020-12-14vpn: Export vpn_ipconfig_foreach as linker symbolDaniel Wagner4-4/+4 2020-12-14vpn: Do not do mixed declerations and codeDaniel Wagner1-18/+14 2020-12-14src: Test return value of inet_pton consistentlyDaniel Wagner5-17/+17 2020-12-11doc: Document VPN connection SplitRouting booleanJussi Laakkonen1-1/+8 2020-12-11vpn-provider: Support SplitRouting option from connmandJussi Laakkonen1-21/+158 2020-12-11vpn-provider: Drop route management from vpndJussi Laakkonen5-100/+13 2020-12-11vpn-config: Implement function to get boolean from keyfileJussi Laakkonen2-4/+21 2020-12-11vpn: Support SplitRouting in D-Bus variables, improve route codeJussi Laakkonen1-20/+207 2020-12-11provider: Add support for managing SplitRoutingJussi Laakkonen2-0/+105 2020-12-11service: Load and apply service settings after D-Bus registrationJussi Laakkonen1-3/+3 2020-12-11service: Add property changed signal for SplitRouting valueJussi Laakkonen2-0/+25 2020-12-11service: Expose set_split_routing() for internal useJussi Laakkonen2-10/+15 2020-12-11service: Split service move functionality for internal useJussi Laakkonen2-16/+46 2020-12-11dbus: Report back the return value of g_dbus_send_message()Jussi Laakkonen1-18/+6 2020-12-11inet: Do not add broadcast address for P2P/VPNsJussi Laakkonen20-36/+123 2020-12-11inet: Refactor with getifaddrs() and add network route getter functionJussi Laakkonen2-243/+326 2020-12-11inet: Add function for detecting a default routeJussi Laakkonen2-0/+17 2020-12-11connection: Add getter for the phy index of a VPN transport serviceJussi Laakkonen2-0/+24 2020-12-11wispr: check service before stopping portal detectionSergey Matyukevich1-1/+17 2020-12-11AUTHORS: Mention Boleslaw’s contributionsDaniel Wagner1-0/+1 2020-12-11neard: Fix memory leaks with PendingCallBoleslaw Tokarski1-1/+1 2020-12-11vpn: Fix memory leaks with PendingCallBoleslaw Tokarski1-11/+30 2020-12-11vpn: Secure a race condition with flagBoleslaw Tokarski1-2/+8 2020-12-11Revert "gdhcp: Make DHCP client timeouts suspend aware"Daniel Wagner2-134/+52 2020-12-04vpn-provider: Cancel agent requests when removing VPNJussi Laakkonen1-0/+6 2020-12-04AUTHORS: Mention Emmanuel’s contributionsDaniel Wagner1-0/+1 2020-12-04services: Return error for invalid hidden namesEmmanuel Vautrin1-8/+12 2020-12-04AUTHORS: Mention Pieter’s contributionsDaniel Wagner1-0/+1 2020-12-04rtnl: Mark dsa interfaces as ethernet typePieter Cardoen1-0/+3 2020-11-24iwd: Enable/disable auto_connect on known networksDaniel Wagner1-90/+168 2020-11-24service: Propagade autoconnect mode to networkDaniel Wagner1-0/+4 2020-11-24network: Add connman_network_set_autoconect()Daniel Wagner2-0/+12 2020-11-05vpn-provider: Emit connection created signal if loading from keyfileJussi Laakkonen1-1/+4 2020-10-30wifi: Do no disconnect when disconnect code is unspecified reasonDaniel Wagner1-3/+0 2020-10-30vpn: Annotate fallthrough correctlyDaniel Wagner1-1/+2 2020-10-23vpn: Use util functions for getting uid and gidJussi Laakkonen1-45/+10 2020-10-23vpnc: Support setting the pid file path to /var/run/userJussi Laakkonen1-0/+54 2020-10-23vpn-settings: Add SystemBinaryUsers conf option and system user checkJussi Laakkonen1-1/+62 2020-10-23vpn: Add CAP_CHOWN CAP_FOWNER capabilities for path creationJussi Laakkonen1-1/+1 2020-10-23vpn-util: Create utility file for VPN core and pluginsJussi Laakkonen3-1/+229 2020-10-23bluetooth: Move DBG statement after initial checksDaniel Wagner1-2/+2 2020-10-23pptp: Support --idle-wait and --max-echo-wait optionsJussi Laakkonen1-12/+19 2020-10-23openvpn: Add support for --ping, --ping-exit and --remap-usr1Jussi Laakkonen1-7/+23 2020-10-12wireguard: Fix struct sockaddr usageDaniel Wagner1-22/+25 2020-10-12vpn: Do not use invalid pointer for loggingDaniel Wagner1-1/+1 2020-09-30AUTHORS: Mention Sergey’s contributionsDaniel Wagner1-0/+1 2020-09-30ipconfig: cleanup ipdevice gateway fieldsSergey Matyukevich1-0/+14 2020-09-23vpn: Move vpn_provider_get_ident() declaration to vpn-provider.hJussi Laakkonen3-2/+1 2020-09-23test: Replace static glib with gi.repository moduleDaniel Wagner6-23/+17 2020-09-21AUTHORS: Mention Markus’ contributionsDaniel Wagner1-0/+1 2020-09-21ntp: Do not depend on the existence of a nameserver entryMarkus Held1-6/+5 2020-09-17AUTHORS: Mention Christoph’s contributionsDaniel Wagner1-0/+1 2020-09-17AUHTORS: Mention Simon’s contributionsDaniel Wagner1-0/+1 2020-09-17wifi: Detect invalid key with 4-way handshake offloadingHolesch, Simon (GED-SDD1)1-1/+4 2020-09-17main: Add CONFIG_FAVORITE_TECHS to supported_optionsChristoph Steiger1-0/+1 2020-09-17gdhcp: Make DHCP client timeouts suspend awareHolesch, Simon (GED-SDD1)2-52/+134 2020-09-17iptables: Fix IPv6 invflags updateRahul Jain1-1/+1 2020-07-31vpn: Make domain parameter optionalDaniel Wagner3-7/+8 2020-07-31wireguard: Regular reresolve endpoint addressDaniel Wagner1-7/+80 2020-07-31session: Fix state initializiationDaniel Wagner1-1/+1 2020-07-31vpn: Send D-Bus response when connecting for daemon-less setupsDaniel Wagner1-1/+1 2020-05-26vpn: Constify struct vpn_driver pointerSlava Monich2-3/+3 2020-05-26util: Fixed implicit declaration of function 'strlen’Slava Monich1-0/+1 2020-05-26gdbus: Replace snprintf() with g_strdup_printf()Daniel Wagner1-22/+43 2020-03-22iwd: Mark network avaible after scaningDaniel Wagner1-6/+16 2020-03-13AUTHORS: Mention Maxime’s contributionsDaniel Wagner1-0/+1 2020-03-13iwd: Synchronize station scanning property with scan stateMaxime Roussin-Bélanger1-0/+6 2020-02-17iwd: Fix uninitialized access in tech_enable_tethering_cb()Daniel Wagner1-1/+1 2020-02-14Release 1.381.38Marcel Holtmann2-1/+8 2020-02-13vpn: Split nameservers strings correctlyDaniel Wagner1-1/+1 2020-02-10coding-style: Update M8 about g_malloc useDaniel Wagner1-4/+13 2020-02-10test: Update all Python script to version 3Daniel Wagner37-313/+313 2020-02-08mnlg: Define NETLINK socket optionsDaniel Wagner1-0/+6 2020-02-08iwd: Propagete signal strength valuesDaniel Wagner1-0/+1 2020-02-07ipconfig: Use prefix in store_{set|get}_int()Daniel Wagner1-2/+2