CVE-2025-32743

Name of the Vulnerable Software and Affected Versions: ConnMan versions 1.44 and earlier

Description: The issue in ConnMan allows attackers to cause a denial of service or possibly execute arbitrary code by manipulating DNS responses. This occurs when the lookup string in ns resolv in dnsproxy.c can be NULL or an empty string when the TC (Truncated) bit is set in a DNS response, leading to incorrect length calculations and incorrect memcpy operations.

Recommendations: For ConnMan versions 1.44 and earlier, as a temporary workaround, consider restricting the handling of DNS responses with the TC bit set to prevent potential exploitation. However, at the moment, there is no information about a newer version that contains a fix for this vulnerability.