[Git][security-tracker-team/security-tracker][master] Add CVE-2018-18409/tcpflow

Wed Oct 17 19:54:52 BST 2018

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6149e307 by Salvatore Bonaccorso at 2018-10-17T18:54:15Z
Add CVE-2018-18409/tcpflow

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -61,7 +61,8 @@ CVE-2018-18411
 CVE-2018-18410
 	RESERVED
 CVE-2018-18409 (A stack-based buffer over-read exists in setbit() at iptree.h of ...)
-	TODO: check
+	- tcpflow <unfixed>
+	NOTE: https://github.com/simsong/tcpflow/issues/195
 CVE-2018-18408 (A use-after-free was discovered in the tcpbridge binary of Tcpreplay ...)
 	TODO: check
 CVE-2018-18407 (A heap-based buffer over-read was discovered in the tcpreplay-edit ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6149e307c542fe2a4d0a1ba342548d8ec4267047

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6149e307c542fe2a4d0a1ba342548d8ec4267047
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181017/35354049/attachment.html>
