Mageia: 2019-0158 Moderate: Tcpreplay NULL Pointer Dereference

mageia

May 12, 2019

Updated tcpreplay package fixes security vulnerabilities: An issue was discovered in Tcpreplay 4.3.1

Summary

Updated tcpreplay package fixes security vulnerabilities:
An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference occurred in the function get_layer4_v6() located at get.c. This can be triggered by sending a crafted pcap file to the tcpreplay-edit binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact (CVE-2019-8376).
An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference occurred in the function get_ipv6_l4proto() located at get.c. This can be triggered by sending a crafted pcap file to the tcpreplay-edit binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact (CVE-2019-8377).
An issue was discovered in Tcpreplay 4.3.1. An invalid memory access occursin do_checksum in checksum.c. It can be triggered by sending a crafted pcap file to the tcpreplay-edit binary. It allows an attacker to cause a Denial of Service (Segmentati...

Read the Full Advisory

References

- https://bugs.mageia.org/show_bug.cgi?id=24581

- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/4V3SADKXUSHWTVAPU3WLXBDEQUHRA6ZO/

- https://www.cve.org/CVERecord?id=CVE-2019-8376

- https://www.cve.org/CVERecord?id=CVE-2019-8377

- https://www.cve.org/CVERecord?id=CVE-2019-8381

Topics Covered

security advisory NULL pointer Denial of Service segmentation fault Mageia tcpreplay

Resolution

SRPMS

- 6/core/tcpreplay-4.3.2-1.mga6

Severity

medium

Lowest

Low

Medium

High

Critical

Publication date: 12 May 2019

URL: https://advisories.mageia.org/MGASA-2019-0158.html

Type: security

CVE: CVE-2019-8376, CVE-2019-8377, CVE-2019-8381

Topics Covered

security advisory NULL pointer Denial of Service segmentation fault Mageia tcpreplay

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Mageia: 2019-0158 Moderate: Tcpreplay NULL Pointer Dereference

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Mageia: 2019-0158 Moderate: Tcpreplay NULL Pointer Dereference

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!