[Git][security-tracker-team/security-tracker][master] CVE-2018-20552,CVE-2018-20553,tcpreplay: no-dsa for Jessie
Markus Koschany
apo at debian.org
Sun Dec 30 15:28:52 GMT 2018
Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a4fa71d8 by Markus Koschany at 2018-12-30T15:25:35Z
CVE-2018-20552,CVE-2018-20553,tcpreplay: no-dsa for Jessie
The heap-based buffer overflows are reproducible with ASAN, without ASAN the
tcprep tool segfaults. Since we have marked similar issues as no-dsa in the
past and none of our sponsors uses it, I also mark it as no-dsa. In addition to
exploit this issue one has to manipulate a pcap file and trick someone into
using it.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -64,10 +64,12 @@ CVE-2018-20554
RESERVED
CVE-2018-20553 (Tcpreplay before 4.3.1 has a heap-based buffer over-read in get_l2len ...)
- tcpreplay <unfixed> (bug #917574)
+ [jessie] - tcpreplay <no-dsa> (not used by any sponsor, hard to exploit)
NOTE: https://github.com/appneta/tcpreplay/issues/530
NOTE: https://github.com/appneta/tcpreplay/pull/532/commits/6b830a1640ca20528032c89a4fdd8291a4d2d8b2
CVE-2018-20552 (Tcpreplay before 4.3.1 has a heap-based buffer over-read in packet2tree ...)
- tcpreplay <unfixed> (bug #917574)
+ [jessie] - tcpreplay <no-dsa> (not used by any sponsor, hard to exploit)
NOTE: https://github.com/appneta/tcpreplay/issues/530
NOTE: https://github.com/appneta/tcpreplay/pull/532/commits/6b830a1640ca20528032c89a4fdd8291a4d2d8b2
CVE-2018-1000893
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a4fa71d8b54a7dfa7fdb6e874ffe6d107148f77a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a4fa71d8b54a7dfa7fdb6e874ffe6d107148f77a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181230/5dbcc12b/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list