alpine · CVE-2022-32293

Quick triage

Priority: not assigned Published: Updated:

View at Official alpine advisory, NVD, CVE.org · CVE detail

Freshness: no update timestamp found; verify against the upstream OS advisory manually.

Tracker summary

CVE-2022-32293: 1 source package rows (connman); 6 state rows across 4 repos (3.17-community, 3.18-community, 3.22-community, edge-community); fixed 0, open 6.

Description:

In ConnMan through 1.41, a man-in-the-middle attack against a WISPR HTTP query could be used to trigger a use-after-free in WISPR handling, leading to crashes or code execution.

cvelogic Threat Intelligence