SB2025090253 - Multiple vulnerabilities in AppNeta Tcpreplay

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Use-after-free (CVE-ID: CVE-2025-9157)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the untrunc_packet() function in src/tcpedit/edit_packet.c of the component tcprewrite. A local user can execute arbitrary code with elevated privileges. 

2) Buffer overflow (CVE-ID: CVE-2025-9019)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary error within the mask_cidr6() function in cidr.c. A remote attacker can send specially crafted packets to the application, trigger memory corruption and crash the application. 

Remediation

Install update from vendor's website.

References

• https://drive.google.com/file/d/1_aONM_TOF96JbnYviPyZhVk-7HObtX8H/view?usp=sharing
• https://github.com/appneta/tcpreplay/commit/73008f261f1cdf7a1087dc8759115242696d35da
• https://github.com/appneta/tcpreplay/issues/970
• https://github.com/appneta/tcpreplay/issues/970#issuecomment-3198966053
• https://vuldb.com/?ctiid.320537
• https://vuldb.com/?id.320537
• https://vuldb.com/?submit.630495
• https://drive.google.com/file/d/13SQYVIb_YQoRfaJaaLf6iLtMiCRCHlBc/view?usp=sharing
• https://github.com/appneta/tcpreplay/issues/958
• https://github.com/appneta/tcpreplay/issues/958#issuecomment-3124876035
• https://github.com/appneta/tcpreplay/issues/959
• https://vuldb.com/?ctiid.320080
• https://vuldb.com/?id.320080
• https://vuldb.com/?submit.623635
• https://vuldb.com/?submit.623636
• https://vuldb.com/?submit.623637
• https://vuldb.com/?submit.623638
• https://vuldb.com/?submit.623639