ALT-PU-2023-8642-1

Package update iperf3 in branch p9

Version3.16-alt1

Published2023-12-14

Max severityMEDIUM

Severity:

Closed issues (2)

MEDIUM5.3

Уязвимость инструмента измерения пропускной способности сети Iperf3, связанная с разрешенными списками входных данных, позволяющая нарушителю вызвать отказ в обслуживании

Published: 2024-04-25Modified: 2026-04-15

CVSS 3.xMEDIUM 5.3

CVSS:3.x/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CVSS 2.0MEDIUM 5.0

CVSS:2.0/AV:N/AC:L/Au:N/C:N/I:N/A:P

References

CVE-2023-7250

MEDIUM5.3

A flaw was found in iperf, a utility for testing network performance using TCP, UDP, and SCTP. A malicious or malfunctioning client can send less than the expected amount of data to the iperf server, which can cause the server to hang indefinitely waiting for the remainder or until the connection gets closed. This will prevent other connections to the server, leading to a denial of service.

Published: 2024-03-18Modified: 2025-11-03

CVSS 3.xMEDIUM 5.3

CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

References