An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference occurred in the function get_ipv6_l4proto() located at get.c. This can be triggered by sending a crafted pcap file to the tcpreplay-edit binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
07 Nov 2023, 03:13
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
08 Apr 2022, 10:31
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:* |
|
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4YAT4AGTHQKB74ETOQPJMV67TSDIAPOC/ - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EB3ASS7URTIA3IFSBL2DIWJAFKTBJCAW/ - Mailing List, Third Party Advisory | |
References | (MISC) https://github.com/appneta/tcpreplay/issues/536 - Exploit, Issue Tracking, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOSEIQ3D2OONCJEVMGC2TYBC2QX4E5EJ/ - Mailing List, Third Party Advisory |
02 Apr 2022, 03:30
Type | Values Removed | Values Added |
---|---|---|
First Time |
Broadcom tcpreplay
Broadcom |
|
CPE | cpe:2.3:a:broadcom:tcpreplay:4.3.1:*:*:*:*:*:*:* |
Information
Published : 2019-02-17 02:29
Updated : 2023-12-10 12:44
NVD link : CVE-2019-8377
Mitre link : CVE-2019-8377
CVE.ORG link : CVE-2019-8377
JSON object : View
Products Affected
fedoraproject
- fedora
broadcom
- tcpreplay
CWE
CWE-476
NULL Pointer Dereference