Lucene search
+L

92 matches found

Debian
Debian
added 2020/11/28 11:9 p.m.58 views

[SECURITY] [DLA 2468-1] tcpflow security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2468-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz November 29, 2020 https://wiki.debian.org/LTS -...

9.1CVSS9.3AI score0.02753EPSS
Exploits1
Veracode
Veracode
added 2020/09/21 6:34 a.m.22 views

Authorization Bypass

tcpflow is vulnerable to authorization bypass. The vulnerability exists through an integer overflow in the function handleprism during caplen processing, if the caplen is less than 144...

9.1CVSS4.1AI score0.02753EPSS
Exploits1References4Affected Software1
Veracode
Veracode
added 2020/06/03 4:10 a.m.18 views

Denial Of Service (DoS)

tcpflow is vulnerable to denial of service DoS. The vulnerability exists as a stack-based buffer over-read exists in setbit at iptree.h of TCPFLOW 1.5.0, due to received incorrect values causing incorrect computation, leading to denial of service during an addresshistogram call or a gethistogram...

5.5CVSS3.6AI score0.01302EPSS
Exploits1References6Affected Software2
OSV
OSV
added 2019/09/12 7:9 p.m.10 views

MGASA-2019-0264 Updated tcpflow packages fix security vulnerability

Updated tcpflow package fixes security vulnerability: A stack-based buffer over-read exists in setbit at iptree.h of TCPFLOW 1.5.0, due to received incorrect values causing incorrect computation, leading to denial of service during an addresshistogram call or a gethistogram call CVE-2018-18409...

5.5CVSS5.6AI score0.01302EPSS
Exploits1References2
Mageia
Mageia
added 2019/09/12 7:9 p.m.36 views

Updated tcpflow packages fix security vulnerability

Updated tcpflow package fixes security vulnerability: A stack-based buffer over-read exists in setbit at iptree.h of TCPFLOW 1.5.0, due to received incorrect values causing incorrect computation, leading to denial of service during an addresshistogram call or a gethistogram call CVE-2018-18409...

5.5CVSS3.5AI score0.01302EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2019/05/07 12:0 a.m.70 views

Fedora Update for tcpflow FEDORA-2019-2c020ccbd5

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.5CVSS5.9AI score0.01302EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/05/02 12:0 a.m.37 views

Fedora 30 : tcpflow (2019-ea0f30909a)

Update tcpflow to 1.5.2 tag at github, fixing a security issue. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

5.5CVSS6.3AI score0.01302EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/04/26 12:0 a.m.27 views

Ubuntu 16.04 LTS / 18.04 LTS : tcpflow vulnerabilities (USN-3955-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3955-1 advisory. It was discovered that tcpflow incorrectly handled certain malformed network packets. A remote attacker could send these packets to a target...

9.1CVSS7.3AI score0.02753EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2019/04/26 12:0 a.m.40 views

Ubuntu: Security Advisory (USN-3955-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.4AI score0.02753EPSS
Exploits2References2
OSV
OSV
added 2019/04/24 5:57 p.m.1 views

USN-3955-1 tcpflow vulnerabilities

It was discovered that tcpflow incorrectly handled certain malformed network packets. A remote attacker could send these packets to a target system, causing tcpflow to crash or possibly disclose sensitive information...

9.1CVSS7.3AI score0.02753EPSS
Exploits2References3
Ubuntu
Ubuntu
added 2019/04/24 5:57 p.m.68 views

USN-3955-1: tcpflow vulnerabilities

It was discovered that tcpflow incorrectly handled certain malformed network packets. A remote attacker could send these packets to a target system, causing tcpflow to crash or possibly disclose sensitive information...

9.1CVSS7.4AI score0.02753EPSS
Exploits2
Fedora
Fedora
added 2019/04/09 12:4 a.m.37 views

[SECURITY] Fedora 30 Update: tcpflow-1.5.0-4.fc30

tcpflow is a program that captures data transmitted as part of TCP connections flows, and stores the data in a way that is convenient for protocol analysis or debugging. A program like 'tcpdump' shows a summary of packets seen on the wire, but usually doesn't store the data that's actually being...

5.5CVSS2.2AI score0.01302EPSS
Exploits1
OpenVAS
OpenVAS
added 2019/03/28 12:0 a.m.31 views

Fedora Update for tcpflow FEDORA-2019-8cdd669aca

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.5CVSS5.9AI score0.01302EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/03/25 12:0 a.m.26 views

Fedora 28 : tcpflow (2019-8cdd669aca)

Update tcpflow to 1.5.2 tag at github, fixing a security issue. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

5.5CVSS6.3AI score0.01302EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/03/25 12:0 a.m.29 views

Fedora 29 : tcpflow (2019-2c020ccbd5)

Update tcpflow to 1.5.2 tag at github, fixing a security issue. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

5.5CVSS6.3AI score0.01302EPSS
Exploits1References2
Fedora
Fedora
added 2019/03/21 9:47 p.m.58 views

[SECURITY] Fedora 29 Update: tcpflow-1.5.0-4.fc29

tcpflow is a program that captures data transmitted as part of TCP connections flows, and stores the data in a way that is convenient for protocol analysis or debugging. A program like 'tcpdump' shows a summary of packets seen on the wire, but usually doesn't store the data that's actually being...

5.5CVSS2.2AI score0.01302EPSS
Exploits1
Fedora
Fedora
added 2019/03/21 9:9 p.m.42 views

[SECURITY] Fedora 28 Update: tcpflow-1.5.0-4.fc28

tcpflow is a program that captures data transmitted as part of TCP connections flows, and stores the data in a way that is convenient for protocol analysis or debugging. A program like 'tcpdump' shows a summary of packets seen on the wire, but usually doesn't store the data that's actually being...

5.5CVSS2.2AI score0.01302EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.24 views

Fedora 28 : tcpflow (2018-5ad77cc979)

Update to latest upstream release tcpflow 1.5.0. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

9.1CVSS8.1AI score0.02753EPSS
Exploits1References2
CNVD
CNVD
added 2018/10/24 12:0 a.m.62 views

TCPFLOW Stack Buffer Overflow Vulnerability

TCPFLOW is a network monitoring tool that records TCP sessions. A stack buffer overflow vulnerability exists in the 'setbit' function of the iptree.h file in TCPFLOW version 1.5.0, which originates from a program receiving an incorrect value, which results in a computation error. An attacker can...

5.5CVSS5.9AI score0.01302EPSS
Exploits1References1
OSV
OSV
added 2018/10/19 6:0 p.m.6 views

MGASA-2018-0401 Updated tcpflow packages fix security vulnerability

pdated tcpflow package fixes security vulnerability: An issue was discovered in wifipcap/wifipcap.cpp in TCPFLOW through 1.5.0-alpha. There is an integer overflow in the function handleprism during caplen processing. If the caplen is less than 144, one can cause an integer overflow in the functio...

9.1CVSS9.3AI score0.02753EPSS
Exploits1References3
Rows per page
Query Builder