stable
FEDORA-2022-47484afa15 created by bojan 3 months ago for Fedora 36

This is Tcpreplay suite 4.4.2

This release contains bug fixes only. What's changed:

  • Bug #716 heap-buffer-overflow in get_l2len_protocol() by @fklassen in #738
  • Bug #721 fixed typo in tcpliveplay.c by @jonathan-dev in #721
  • Bug #717 avoid assertion in get_layer4_v6 by @fklassen in #739
  • Bug #718 improved heap-overflow protection by @fklassen in #740
  • Bug #719 better overflow protection in parse_mpls by @fklassen in #741
  • Bug #725 FORCE_ALIGN on arm by @fklassen in #742
  • Bug #729 tcpreplay_edit: disallow both -K and -l options by @fklassen in #743
  • Bug #735 heap-overflow in get_l2len_protocol by @fklassen in #744
  • Bug #745 remove autogen.sh from distribution tarballs by @fklassen in #747

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2022-47484afa15

This update has been submitted for testing by bojan.

3 months ago

This update's test gating status has been changed to 'ignored'.

3 months ago

This update has been pushed to testing.

3 months ago

bojan edited this update.

2 months ago

This update has been submitted for stable by bodhi.

2 months ago

This update has been pushed to stable.

2 months ago

Please login to add feedback.

Metadata
Type
security
Severity
low
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
3 months ago
in testing
3 months ago
in stable
2 months ago
modified
2 months ago
BZ#2071668 CVE-2022-27939 tcpreplay: net-analyzer/tcpreplay: multiple vulnerabilities [epel-all]
0
0
BZ#2071669 CVE-2022-27939 tcpreplay: net-analyzer/tcpreplay: multiple vulnerabilities [fedora-all]
0
0
BZ#2071673 CVE-2022-27940 tcpreplay: net-analyzer/tcpreplay: multiple vulnerabilities [epel-8]
0
0
BZ#2071716 CVE-2022-27941 tcpreplay: VUL-0: CVE-2022-27941: tcpreplay: tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_l2len_protocol in common/get.c. [epel-8]
0
0
BZ#2071721 CVE-2022-27942 tcpreplay: CVE-2022-27942: tcpreplay: tcpprep in Tcpreplay 4.4.1 has a heap-based buffer over-read in parse_mpls in common/get.c. [epel-8]
0
0
BZ#2081861 CVE-2022-28487 tcpreplay: memory leak in fix_ipv6_checksums() function [fedora-all]
0
0
BZ#2081862 CVE-2022-28487 tcpreplay: memory leak in fix_ipv6_checksums() function [epel-all]
0
0
BZ#2123235 CVE-2022-37047 tcpreplay: heap-based buffer overflow in get_ipv6_next at common/get.c [fedora-all]
0
0
BZ#2123236 CVE-2022-37048 tcpreplay: heap-based buffer overflow in get_l2len_protocol at common/get.c [fedora-all]
0
0
BZ#2123237 CVE-2022-37049 tcpreplay: heap-based buffer overflow in parse_mpls at common/get.c [fedora-all]
0
0
BZ#2123238 CVE-2022-37047 tcpreplay: heap-based buffer overflow in get_ipv6_next at common/get.c [epel-all]
0
0
BZ#2123239 CVE-2022-37048 tcpreplay: heap-based buffer overflow in get_l2len_protocol at common/get.c [epel-all]
0
0
BZ#2123240 CVE-2022-37049 tcpreplay: heap-based buffer overflow in parse_mpls at common/get.c [epel-all]
0
0

Automated Test Results