FEDORA-EPEL-2017-da3e5ef08f

security update in Fedora EPEL 6 for tcpreplay

Status: stable 2 years ago

Here is what is fixed in this release:

  • Fix reporting of rates < 1Mbps (#348)
  • Option --unique-ip not working properly (#346)

Features and fixes include:

  • MAC rewriting capabilities by Pedro Arthur (#313)
  • Fix several issues identified by Coverity (#305)
  • Packet distortion --fuzz-seed option by Gabriel Ganne (#302)
  • Add --unique-ip-loops option to modify IPs every few loops (#296)
  • Netmap startup delay increase (#290)
  • tcpcapinfo buffer overflow vulnerablily (#278)
  • Update git-clone instructions by Kyle McDonald (#277)
  • Allow fractions for --pps option (#270)
  • Print per-loop stats with --stats=0 (#269)
  • Add protection against packet drift by Guillaume Scott (#268)
  • Print flow stats periodically with --stats output (#262)
  • Include Travis-CI build support by Ilya Shipitsin (#264) (#285)
  • tcpreplay won't replay all packets in a pcap file with --netmap (#255)
  • First and last packet times in --stats output (#239)
  • Switch to wire speed after 30 minutes at 6 Gbps (#210)
  • tcprewrite fix checksum properly for fragmented packets (#190)

Patch CVE-2017-6429.

Tcpcapinfo utility of Tcpreplay has a buffer overflow vulnerability associated with parsing a crafted pcap file. This occurs in the src/tcpcapinfo.c file when capture has a packet that is too large to handle.

References:

http://seclists.org/bugtraq/2017/Mar/22

Upstream bug:

https://github.com/appneta/tcpreplay/issues/278

Comments 6

This update has been submitted for testing by bojan.

This update has obsoleted tcpreplay-4.2.0-1.el6, and has inherited its bugs and notes.

This update has been pushed to testing.

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

This update has been submitted for stable by bojan.

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
0
stable threshold: 3
unstable threshold: -3
Autopush (karma)
Enabled
Autopush (time)
Disabled
Dates
submitted 2 years ago
in testing 2 years ago
in stable 2 years ago

Related Bugs 2

00 #1429521 CVE-2017-6429 tcpreplay: Buffer overflow in Tcpcapinfo utility [epel-all]
00 #1429522 CVE-2017-6429 tcpreplay: Buffer overflow in Tcpcapinfo utility [fedora-all]

Automated Test Results