Lucene search
Veracode Vulnerability DatabaseVERACODE:37326HistorySep 29, 2022 - 5:37 a.m.
Heap-based Buffer Overflow
2022-09-2905:37:27
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
16
tcpreplay
heap-based buffer overflow
parse_mpls
memory corruption
vulnerability
EPSS
0.001
Percentile
47.0%
tcpreplay is vulnerable to heap based buffer overflow attack. The vulnerability exists in parse_mpls at common/get.c:150 where a manipulation with an unknown input leads to a memory corruption.
References
github.com/advisories/GHSA-w5hq-ffqp-5pfw
github.com/appneta/tcpreplay/issues/736
lists.fedoraproject.org/archives/list/[email protected]/message/5B75AFRJUGOYHCFG2ZV2JKSUPA6MSCT5/
lists.fedoraproject.org/archives/list/[email protected]/message/ECRCFJ6X3IVB7BT4KS6AHQMSL532YXYD/
lists.fedoraproject.org/archives/list/[email protected]/message/JWRZO7BG6DHA5NAC3COB45WFXLYRIERC/
security-tracker.debian.org/tracker/CVE-2022-37049
security.gentoo.org/glsa/202210-08
Related
cvelist
cvelist
CVE-2022-37049
2022-08-18 00:00:00
nvd
nvd
CVE-2022-37049
2022-08-18 20:15:11
debiancve
debiancve
CVE-2022-37049
2022-08-18 20:15:11
osv
osv
CVE-2022-37049
2022-08-18 20:15:11
ubuntucve
ubuntucve
CVE-2022-37049
2022-08-18 00:00:00
prion
prion
Heap overflow
2022-08-18 20:15:00
cve
cve
CVE-2022-37049
2022-08-18 20:15:11
openvas
openvas
Fedora: Security Advisory for tcpreplay (FEDORA-2022-680ea95f71)
2022-09-05 00:00:00
Fedora: Security Advisory for tcpreplay (FEDORA-2022-d31a521866)
2022-09-13 00:00:00
Mageia: Security Advisory (MGASA-2022-0345)
2022-09-26 00:00:00
fedora
fedora
[SECURITY] Fedora 35 Update: tcpreplay-4.4.2-1.fc35
2022-09-04 22:59:11
[SECURITY] Fedora 36 Update: tcpreplay-4.4.2-1.fc36
2022-09-04 22:49:02
[SECURITY] Fedora 37 Update: tcpreplay-4.4.2-1.fc37
2022-09-12 17:52:37
mageia
mageia
Updated tcpreplay packages fix security vulnerability
2022-09-26 09:22:36
altlinux
altlinux
Security fix for the ALT Linux 9 package tcpreplay version 4.4.2-alt1
2022-11-30 00:00:00
nessus
nessus
GLSA-202210-08 : Tcpreplay: Multiple Vulnerabilities
2022-10-16 00:00:00
gentoo
gentoo
Tcpreplay: Multiple Vulnerabilities
2022-10-16 00:00:00