Fedora 32: FEDORA-2020-0e036c907e moderate: tcpreplay heap overflow

fedora

October 28, 2020

Patch CVE-2020-24265 and CVE-2020-24266.

Summary

Tcpreplay is a tool to replay captured network traffic. Currently, tcpreplay

supports pcap (tcpdump) and snoop capture formats. Also included, is tcpprep

a tool to pre-process capture files to allow increased performance under

certain conditions as well as capinfo which provides basic information about

capture files.

Patch CVE-2020-24265 and CVE-2020-24266.

* Wed Oct 21 2020 Bojan Smojver - 4.3.3-2

- CVE-2020-24265

* Wed Jul 29 2020 Fedora Release Engineering - 4.3.3-2

- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild

[ 1 ] Bug #1889806 - CVE-2020-24265 tcpreplay: heap buffer overflow could result in a crash [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=1889806

[ 2 ] Bug #1889807 - CVE-2020-24265 tcpreplay: heap buffer overflow could result in a crash [epel-all]

https://bugzilla.redhat.com/show_bug.cgi?id=1889807

[ 3 ] Bug #1889809 - CVE-2020-24266 tcpreplay: heap buffer overflow in get_l2len() could result in a crash [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=1889809

[ 4 ] Bug #1889810 - CVE-2020-24266 tcpreplay: heap buffer overflow in get_l2len() could result in a crash [epel-all]

https://bugzilla.redhat.com/show_bug.cgi?id=1889810

su -c 'dnf upgrade --advisory FEDORA-2020-0e036c907e' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Topics Covered

security advisory update Fedora patch network tool heap buffer overflow tcpreplay

Change Log

References

Update Instructions

Product: Fedora 32

Version: 4.3.3

Release: 3.fc32

URL: http://tcpreplay.appneta.com/

Summary: Replay captured network traffic

Topics Covered

security advisory update Fedora patch network tool heap buffer overflow tcpreplay

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Fedora 32: FEDORA-2020-0e036c907e moderate: tcpreplay heap overflow

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Fedora 32: FEDORA-2020-0e036c907e moderate: tcpreplay heap overflow

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!