Oval Definition:oval:org.opensuse.security:def:109804
Revision Date:2021-03-20Version:1
Title:Security update for connman (Moderate)
Description:

This update for connman fixes the following issues:

Update to 1.39 (boo#1181751):

* Fix issue with scanning state synchronization and iwd. * Fix issue with invalid key with 4-way handshake offloading. * Fix issue with DNS proxy length checks to prevent buffer overflow. (CVE-2021-26675) * Fix issue with DHCP leaking stack data via uninitialized variable. (CVE-2021-26676)

Update to 1.38:

Fix issue with online check on IP address update. * Fix issue with OpenVPN and encrypted private keys. * Fix issue with finishing of VPN connections. * Add support for updated stable iwd APIs. * Add support for WireGuard networks.

Update to 1.37:

Fix issue with handling invalid gateway addresses. * Fix issue with handling updates of default gateway. * Fix issue with DHCP servers that require broadcast flag. * Add support for option to use gateways as time servers. * Add support for option to select default technology. * Add support for Address Conflict Detection (ACD). * Add support for IPv6 iptables management.

Change in 1.36:

Fix issue with DNS short response on error handling. * Fix issue with handling incoming DNS requests. * Fix issue with handling empty timeserver list. * Fix issue with incorrect DHCP byte order. * Fix issue with AllowDomainnameUpdates handling. * Fix issue with IPv4 link-local IP conflict error. * Fix issue with handling WISPr over TLS connections. * Fix issue with WiFi background scanning handling. * Fix issue with WiFi disconnect+connect race condition. * Fix issue with WiFi scanning and tethering operation. * Fix issue with WiFi security change handling. * Fix issue with missing signal for WPS changes. * Fix issue with online check retry handling. * Add support for systemd-resolved backend. * Add support for mDNS configuration setup.



This update was imported from the openSUSE:Leap:15.2:Update update project.
Family:unixClass:patch
Status:Reference(s):1181751
CVE-2021-26675
CVE-2021-26676
openSUSE-SU-2021:0452-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
SUSE Package Hub for SUSE Linux Enterprise 15 SP2
Product(s):
Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP2 is installed
  • AND Package Information
  • connman-1.39-bp152.4.3.1 is installed
  • OR connman-client-1.39-bp152.4.3.1 is installed
  • OR connman-devel-1.39-bp152.4.3.1 is installed
  • OR connman-doc-1.39-bp152.4.3.1 is installed
  • OR connman-nmcompat-1.39-bp152.4.3.1 is installed
  • OR connman-plugin-hh2serial-gps-1.39-bp152.4.3.1 is installed
  • OR connman-plugin-iospm-1.39-bp152.4.3.1 is installed
  • OR connman-plugin-l2tp-1.39-bp152.4.3.1 is installed
  • OR connman-plugin-openconnect-1.39-bp152.4.3.1 is installed
  • OR connman-plugin-openvpn-1.39-bp152.4.3.1 is installed
  • OR connman-plugin-polkit-1.39-bp152.4.3.1 is installed
  • OR connman-plugin-pptp-1.39-bp152.4.3.1 is installed
  • OR connman-plugin-tist-1.39-bp152.4.3.1 is installed
  • OR connman-plugin-vpnc-1.39-bp152.4.3.1 is installed
  • OR connman-plugin-wireguard-1.39-bp152.4.3.1 is installed
  • OR connman-test-1.39-bp152.4.3.1 is installed
    • BACK