Package tcpreplay updated to version 4.3.4-alt1 for branch sisyphus in task 271455.

Published: 2020-10-19
Modified: 2024-11-21

CVE-2020-24265

An issue was discovered in tcpreplay tcpprep v4.3.3. There is a heap buffer overflow vulnerability in MemcmpInterceptorCommon() that can make tcpprep crash and cause a denial of service.

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

https://github.com/appneta/tcpreplay/issues/616
https://github.com/appneta/tcpreplay/issues/616
FEDORA-2020-0e036c907e
FEDORA-2020-0e036c907e
FEDORA-2020-e45cf8ea43
FEDORA-2020-e45cf8ea43
FEDORA-2020-c50d8b980b
FEDORA-2020-c50d8b980b
GLSA-202105-21
GLSA-202105-21

Published: 2020-10-19
Modified: 2024-11-21

CVE-2020-24266

An issue was discovered in tcpreplay tcpprep v4.3.3. There is a heap buffer overflow vulnerability in get_l2len() that can make tcpprep crash and cause a denial of service.

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

https://github.com/appneta/tcpreplay/issues/617
https://github.com/appneta/tcpreplay/issues/617
FEDORA-2020-0e036c907e
FEDORA-2020-0e036c907e
FEDORA-2020-e45cf8ea43
FEDORA-2020-e45cf8ea43
FEDORA-2020-c50d8b980b
FEDORA-2020-c50d8b980b
GLSA-202105-21
GLSA-202105-21

Version: 2.1.0

Package tcpreplay update in sisyphus on 2021-05-11

ALT-PU-2021-1782-1

Closed vulnerabilities

CVE-2020-24265

CVE-2020-24266