MGASA-2023-0188

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2023-0188.html

Import Source

https://advisories.mageia.org/MGASA-2023-0188.json

JSON Data

https://api.test.osv.dev/v1/vulns/MGASA-2023-0188

Related

Published

2023-05-31T06:41:32Z

Modified

2023-05-31T05:31:39Z

Summary

Updated tcpreplay packages fix security vulnerability

Details

An issue found in TCPreplay tcprewrite v.4.4.3 allows a remote attacker to cause a denial of service via the tcpeditdltcleanup function at plugins/dlt_plugins.c. (CVE-2023-27783)

An issue found in TCPReplay v.4.4.3 allows a remote attacker to cause a denial of service via the read_hexstring function at the utils.c:309 endpoint. (CVE-2023-27784)

An issue found in TCPreplay TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the parse endpoints function. (CVE-2023-27785)

An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the macinstring function. (CVE-2023-27786)

An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the parse_list function at the list.c:81 endpoint. (CVE-2023-27787)

An issue found in TCPrewrite v.4.4.3 allows a remote attacker to cause a denial of service via the ports2PORT function at the portmap.c:69 endpoint. (CVE-2023-27788)

An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the cidr2cidr function at the cidr.c:178 endpoint. (CVE-2023-27789)

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:8 / tcpreplay

Package

Name: tcpreplay
Purl: pkg:rpm/mageia/tcpreplay?distro=mageia-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.4.2-1.1.mga8

Ecosystem specific

{
    "section": "core"
}