MGASA-2020-0278 - Updated tcpreplay packages fix security vulnerability Publication date: 05 Jul 2020 URL: https://advisories.mageia.org/MGASA-2020-0278.html Type: security Affected Mageia releases: 7 CVE: CVE-2020-12740 Updated tcpreplay package fixes security vulnerability: tcprewrite in Tcpreplay through 4.3.2 has a heap-based buffer over-read during a get_c operation. The issue is being triggered in the function get_ipv6_next() at common/get.c (CVE-2020-12740). References: - https://bugs.mageia.org/show_bug.cgi?id=26885 - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/4YAT4AGTHQKB74ETOQPJMV67TSDIAPOC/ - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12740 SRPMS: - 7/core/tcpreplay-4.3.3-1.mga7
Mageia 2020-0278: tcpreplay security update
Updated tcpreplay package fixes security vulnerability: tcprewrite in Tcpreplay through 4.3.2 has a heap-based buffer over-read during a get_c operation
Summary
Updated tcpreplay package fixes security vulnerability:
tcprewrite in Tcpreplay through 4.3.2 has a heap-based buffer over-read
during a get_c operation. The issue is being triggered in the function
get_ipv6_next() at common/get.c (CVE-2020-12740).
References
- https://bugs.mageia.org/show_bug.cgi?id=26885
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/4YAT4AGTHQKB74ETOQPJMV67TSDIAPOC/
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12740
Resolution
MGASA-2020-0278 - Updated tcpreplay packages fix security vulnerability
SRPMS
- 7/core/tcpreplay-4.3.3-1.mga7
Severity
Publication date: 05 Jul 2020
URL: https://advisories.mageia.org/MGASA-2020-0278.html
Type: security
CVE: CVE-2020-12740
News
HOWTOs
Features
About Us
Powered By
