FEDORA-2019-a9c08d4b40

security update in Fedora 28 for tcpreplay

Status: stable 7 months ago

Patch CVE-2019-8376, CVE-2019-8377 and CVE-2019-8381.

How to install

sudo dnf upgrade --advisory=FEDORA-2019-a9c08d4b40

Comments 9

This update has been submitted for testing by bojan.

This update has been pushed to testing.

bojan edited this update.

New build(s):

  • tcpreplay-4.3.2-1.fc28

Removed build(s):

  • tcpreplay-4.3.1-3.fc28

Karma has been reset.

This update has been submitted for testing by bojan.

This update has been pushed to testing.

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

This update has been submitted for batched by bojan.

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
low
Karma
0
stable threshold: 3
unstable threshold: -3
Autopush (karma)
Enabled
Autopush (time)
Disabled
Dates
submitted 7 months ago
in testing 7 months ago
in stable 7 months ago
modified 7 months ago

Related Bugs 8

00 #1646403 CVE-2018-18407 tcpreplay: tcpreplay: heap-based buffer over-read in csum_replace4 function in incremental_checksum.h [epel-all]
00 #1646408 CVE-2018-18408 tcpreplay: use-after-free in post_args function in tcpbridge.c [epel-all]
00 #1678230 CVE-2019-8381 tcpreplay: invalid memory access in function do_checksum in checksum.c [fedora-all]
00 #1678231 CVE-2019-8381 tcpreplay: invalid memory access in function do_checksum in checksum.c [epel-all]
00 #1678241 CVE-2019-8376 tcpreplay: null pointer dereference in function get_layer4_v6() in get.c [fedora-all]
00 #1678242 CVE-2019-8376 tcpreplay: null pointer dereference in function get_layer4_v6() in get.c [epel-all]
00 #1678244 CVE-2019-8377 tcpreplay: null pointer dereference in function get_ipv6_l4proto() in get.c [fedora-all]
00 #1678245 CVE-2019-8377 tcpreplay: null pointer dereference in function get_ipv6_l4proto() in get.c [epel-all]

Automated Test Results