EPSS
Percentile
19.9%
tcpreplay is vulnerable to denial of service. The vulnerability exists in packet2tree() function of tree.c due to a reachable assertion which allows an attacker to crash the application via malicious input.
packet2tree()
tree.c
bugzilla.redhat.com/show_bug.cgi?id=CVE-2022-25484
bugzilla.suse.com/show_bug.cgi?id=CVE-2022-25484
github.com/advisories/GHSA-29c2-jq97-8pp8
github.com/appneta/tcpreplay/issues/715
security-tracker.debian.org/tracker/CVE-2022-25484