SB2023082098 - Multiple vulnerabilities in TCPReplay
Published: August 20, 2023
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 7 secuirty vulnerabilities.
1) Reachable Assertion (CVE-ID: CVE-2023-27788)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a reachable assertion within the ports2PORT() function in portmap.c in TCPrewrite. A remote attacker can perform a denial of service (DoS) attack.
2) NULL pointer dereference (CVE-ID: CVE-2023-27787)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a NULL pointer dereference error in TCPprep. A remote attacker can pass specially crafted data to the application and perform a denial of service (DoS) attack.
3) NULL pointer dereference (CVE-ID: CVE-2023-27786)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a NULL pointer dereference error in TCPprep. A remote attacker can pass specially crafted data to the application and perform a denial of service (DoS) attack.
4) Reachable Assertion (CVE-ID: CVE-2023-27789)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a reachable assertion within the cidr2cidr() function in cidr.c in TCPprep. A remote attacker can perform a denial of service (DoS) attack.
5) NULL pointer dereference (CVE-ID: CVE-2023-27785)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a NULL pointer dereference error. A remote attacker can pass specially crafted data to the application and perform a denial of service (DoS) attack.
6) NULL pointer dereference (CVE-ID: CVE-2023-27784)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a NULL pointer dereference error within the read_hexstring() function in utils.c. A remote attacker can pass specially crafted data to the application and perform a denial of service (DoS) attack.
7) Reachable Assertion (CVE-ID: CVE-2023-27783)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a reachable assertion within the tcpedit_dlt_cleanup() function in plugins/dlt_plugins.c. A remote attacker can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://github.com/appneta/tcpreplay/issues/786
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UE3J4LKYFNKPKNSLDQK4JG36THQMQH3V/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UK2BRH3W3ECF5FDXP6QM3ZEDTHIOE4M5/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R3ER3YTFR3XIDMYEB7LMFWFTPVQALBHC/
- https://github.com/appneta/tcpreplay/issues/788
- https://github.com/appneta/tcpreplay/pull/783
- https://github.com/appneta/tcpreplay/issues/782
- https://github.com/appneta/tcpreplay/issues/784
- https://github.com/appneta/tcpreplay/issues/785
- https://github.com/appneta/tcpreplay/issues/787
- https://github.com/appneta/tcpreplay/pull/781
- https://github.com/appneta/tcpreplay/issues/780