Within tcpreplay's tcprewrite, a double free vulnerability has been identified in the tcpedit_dlt_cleanup() function within plugins/dlt_plugins.c. This vulnerability can be exploited by supplying a specifically crafted file to the tcprewrite binary. This flaw enables a local attacker to initiate a Denial of Service (DoS) attack.
References
Configurations
History
21 Nov 2024, 08:34
Type | Values Removed | Values Added |
---|---|---|
References | () https://bugzilla.redhat.com/show_bug.cgi?id=2255212 - Exploit, Issue Tracking, Third Party Advisory | |
References | () https://github.com/appneta/tcpreplay/issues/813 - Exploit, Issue Tracking, Third Party Advisory | |
References | () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EHUILQV2YJI5TXXXJA5FQ2HJQGFT7NTN/ - | |
References | () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TMW5CIODKRHUUH7NTAYIRWGSJ56DTGXM/ - | |
References | () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/V3GYCHPVJ2VFN3D7FI4IRMDVMILLWBRF/ - |
24 Mar 2024, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
23 Mar 2024, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
03 Jan 2024, 02:51
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-415 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.5 |
CPE | cpe:2.3:a:broadcom:tcpreplay:4.4.4:*:*:*:*:*:*:* cpe:2.3:a:broadcom:tcpreplay:4.4.3:*:*:*:*:*:*:* cpe:2.3:a:fedoraproject:extra_packages_for_enterprise_linux:8.0:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:* |
|
References | () https://github.com/appneta/tcpreplay/issues/813 - Exploit, Issue Tracking, Third Party Advisory | |
References | () https://bugzilla.redhat.com/show_bug.cgi?id=2255212 - Exploit, Issue Tracking, Third Party Advisory |
21 Dec 2023, 18:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-12-21 16:15
Updated : 2024-11-21 08:34
NVD link : CVE-2023-4256
Mitre link : CVE-2023-4256
CVE.ORG link : CVE-2023-4256
JSON object : View
Products Affected
broadcom
- tcpreplay
fedoraproject
- fedora
- extra_packages_for_enterprise_linux
CWE
CWE-415
Double Free