575 matches found
CVE-2025-51006
Within tcpreplay's tcprewrite, a double free vulnerability has been identified in the dltlinuxsll2cleanup function in plugins/dltlinuxsll2/linuxsll2.c. This vulnerability is triggered when tcpeditdltcleanup indirectly invokes the cleanup routine multiple times on the same memory region. By...
[SECURITY] Fedora 43 Update: tcpreplay-4.5.2-1.fc43
Tcpreplay is a tool to replay captured network traffic. Currently, tcpreplay supports pcap tcpdump and snoop capture formats. Also included, is tcpprep a tool to pre-process capture files to allow increased performance under certain conditions as well as capinfo which provides basic information...
Linux Distros Unpatched Vulnerability : CVE-2020-18976
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer Overflow in Tcpreplay v4.3.2 allows attackers to cause a Denial of Service via the 'dochecksum' function in 'checksum.c'. It can be triggered by sending ...
Linux Distros Unpatched Vulnerability : CVE-2019-1010220
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tcpdump.org tcpdump 4.9.2 is affected by: CWE-126: Buffer Over-read. The impact is: May expose Saved Frame Pointer, Return Address etc. on stack. The component...
Linux Distros Unpatched Vulnerability : CVE-2019-8376
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference occurred in the function getlayer4v6 located at get.c. This can be triggered by sending a...
suricata-rules
suricata-rules Suricata是一个优秀的开源入侵检测系统,此项目记录安全运营人员提取的高质量Suricata IDS规则,欢迎大家提交。 规则编写要求如下 每个规则对应新建目录如下 webshell检测 规则目录名称-按照对应检测规则描述清楚即可 - webshell.pcap 规则对应的pcap包,尽量以flow的形式保存 - websehll.rules 自己提取的规则文件,尽量测试过提交。 - README 可以描述一些规则相关的东西,便于他人理解,支持Markdown 规则目录...
SUSE-SU-2025:0590-1 Security update for netty, netty-tcnative
This update for netty, netty-tcnative fixes the following issues: - CVE-2025-24970: incorrect validation of packets by SslHandler can lead to a native crash. bsc1237037 - CVE-2025-25193: unsafe reading of environment files can lead to an application crash. bsc1237038 Update to netty version 4.1.1...
The vulnerability of the mask_cidr6() function in the tcprewrite tool for editing and replaying PCAP files allows a attacker to cause a service failure.
The vulnerability of the maskcidr6 function in the tcprewrite tool for editing and replaying PCAP files is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause service interruptions remotely...
The vulnerability of the cidr2cidr() function, a processor for PCAP files, in the tcpprep editing and playback utility for PCAP files, allows a malicious actor to cause a service failure.
The vulnerability of the cidr2cidr function, a processor for PCAP files, in the tcpprep editing and playback utility for PCAP files, Tcpreplay, is related to an uncontrolled, exploitable flaw. Exploiting this vulnerability could allow an attacker, operating remotely, to cause service interruption...
SUSE CVE-2024-8006
Remote packet capture support is disabled by default in libpcap. When a user builds libpcap with remote packet capture support enabled, one of the functions that become available is pcapfindalldevsex. One of the function arguments can be a filesystem path, which normally means a directory with...
AZL-48438 CVE-2024-8006 affecting package libpcap for versions less than 1.10.1-3
Remote packet capture support is disabled by default in libpcap. When a user builds libpcap with remote packet capture support enabled, one of the functions that become available is pcapfindalldevsex. One of the function arguments can be a filesystem path, which normally means a directory with...
AZL-48409 CVE-2024-8006 affecting package libpcap for versions less than 1.10.5-1
Remote packet capture support is disabled by default in libpcap. When a user builds libpcap with remote packet capture support enabled, one of the functions that become available is pcapfindalldevsex. One of the function arguments can be a filesystem path, which normally means a directory with...
AZL-48462 CVE-2024-8006 affecting package nmap for versions less than 7.93-3
Remote packet capture support is disabled by default in libpcap. When a user builds libpcap with remote packet capture support enabled, one of the functions that become available is pcapfindalldevsex. One of the function arguments can be a filesystem path, which normally means a directory with...
UBUNTU-CVE-2024-8006
Remote packet capture support is disabled by default in libpcap. When a user builds libpcap with remote packet capture support enabled, one of the functions that become available is pcapfindalldevsex. One of the function arguments can be a filesystem path, which normally means a directory with...
Exploit for Integer Underflow (Wrap or Wraparound) in Microsoft
CVE-2024-38063 Overview In August 2024, Microsoft release...
[SECURITY] Fedora 39 Update: tcpreplay-4.5.1-1.fc39
Tcpreplay is a tool to replay captured network traffic. Currently, tcpreplay supports pcap tcpdump and snoop capture formats. Also included, is tcpprep a tool to pre-process capture files to allow increased performance under certain conditions as well as capinfo which provides basic information...
[SECURITY] Fedora 40 Update: tcpreplay-4.5.1-1.fc40
Tcpreplay is a tool to replay captured network traffic. Currently, tcpreplay supports pcap tcpdump and snoop capture formats. Also included, is tcpprep a tool to pre-process capture files to allow increased performance under certain conditions as well as capinfo which provides basic information...
Fedora 40 : tcpreplay (2024-ecd4cc8435)
The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-ecd4cc8435 advisory. Announcing v4.5.1 This release contains contributions from a record number of new contributors. This is greatly appreciated since I am a team of one, and do...
Fedora 40 : tcpdump (2024-e375e28b45)
The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-e375e28b45 advisory. Fix for CVE-2024-2397 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for...
tcpslice: use-after-free in extract_slice()
A heap use-after-free flaw was found in tcpslices' extractslice. This flaw allows an attacker with local network access to pass a specially crafted 'pcap' file to tcpslice, causing segmentation fault. This vulnerability halts or crashes the application, leading to a denial of service...