9 matches found
EUVD-2018-10138
Malware in sbrugna...
Stack overflow
A stack-based buffer over-read exists in setbit at iptree.h of TCPFLOW 1.5.0, due to received incorrect values causing incorrect computation, leading to denial of service during an addresshistogram call or a gethistogram call...
CVE-2018-18409
A stack-based buffer over-read exists in setbit at iptree.h of TCPFLOW 1.5.0, due to received incorrect values causing incorrect computation, leading to denial of service during an addresshistogram call or a gethistogram call...
ALPINE-CVE-2018-18409
A stack-based buffer over-read exists in setbit at iptree.h of TCPFLOW 1.5.0, due to received incorrect values causing incorrect computation, leading to denial of service during an addresshistogram call or a gethistogram call...
CVE-2018-18409
A stack-based buffer over-read exists in setbit at iptree.h of TCPFLOW 1.5.0, due to received incorrect values causing incorrect computation, leading to denial of service during an addresshistogram call or a gethistogram call...
CVE-2018-18409
A stack-based buffer over-read exists in setbit at iptree.h of TCPFLOW 1.5.0, due to received incorrect values causing incorrect computation, leading to denial of service during an addresshistogram call or a gethistogram call...
CVE-2018-18409
CVE-2018-18409 affects tcpflow 1.5.0 (IPTRee.h setbit) with a stack-based buffer over-read, causing denial of service during address_histogram/get_histogram. Public docs confirm the vulnerability and that tcpflow 1.5.2 fixes it (updates referenced by Mageia/Fedora advisories). No exploitation det...
UBUNTU-CVE-2018-18409
A stack-based buffer over-read exists in setbit at iptree.h of TCPFLOW 1.5.0, due to received incorrect values causing incorrect computation, leading to denial of service during an addresshistogram call or a gethistogram call...
[SECURITY] Fedora 28 Update: tcpflow-1.5.0-2.fc28
tcpflow is a program that captures data transmitted as part of TCP connections flows, and stores the data in a way that is convenient for protocol analysis or debugging. A program like 'tcpdump' shows a summary of packets seen on the wire, but usually doesn't store the data that's actually being...