Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Tcpreplay
(Broadcom)| Repositories | https://github.com/appneta/tcpreplay |
| #Vulnerabilities | 40 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2021-08-25 | CVE-2020-18976 | Buffer Overflow in Tcpreplay v4.3.2 allows attackers to cause a Denial of Service via the 'do_checksum' function in 'checksum.c'. It can be triggered by sending a crafted pcap file to the 'tcpreplay-edit' binary. This issue is different than CVE-2019-8381. | Tcpreplay | 5.5 | ||
| 2021-09-22 | CVE-2020-23273 | Heap-buffer overflow in the randomize_iparp function in edit_packet.c. of Tcpreplay v4.3.2 allows attackers to cause a denial of service (DOS) via a crafted pcap. | Tcpreplay | 5.5 | ||
| 2022-02-11 | CVE-2021-45386 | tcpreplay 4.3.4 has a Reachable Assertion in add_tree_ipv6() at tree.c | Tcpreplay | 5.5 | ||
| 2022-02-11 | CVE-2021-45387 | tcpreplay 4.3.4 has a Reachable Assertion in add_tree_ipv4() at tree.c. | Tcpreplay | 5.5 | ||
| 2022-03-22 | CVE-2022-25484 | tcpprep v4.4.1 has a reachable assertion (assert(l2len > 0)) in packet2tree() at tree.c in tcpprep v4.4.1. | Tcpreplay | 5.5 | ||
| 2022-03-26 | CVE-2022-27939 | tcprewrite in Tcpreplay 4.4.1 has a reachable assertion in get_layer4_v6 in common/get.c. | Tcpreplay, Fedora | 5.5 | ||
| 2022-03-26 | CVE-2022-27940 | tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_ipv6_next in common/get.c. | Tcpreplay, Fedora | 7.8 | ||
| 2022-03-26 | CVE-2022-27941 | tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_l2len_protocol in common/get.c. | Tcpreplay, Fedora | 7.8 | ||
| 2022-03-26 | CVE-2022-27942 | tcpprep in Tcpreplay 4.4.1 has a heap-based buffer over-read in parse_mpls in common/get.c. | Tcpreplay, Fedora | 7.8 | ||
| 2022-04-12 | CVE-2022-27416 | Tcpreplay v4.4.1 was discovered to contain a double-free via __interceptor_free. | Tcpreplay | 7.8 |