CVE-2020-24266
https://notcve.org/view.php?id=CVE-2020-24266
An issue was discovered in tcpreplay tcpprep v4.3.3. There is a heap buffer overflow vulnerability in get_l2len() that can make tcpprep crash and cause a denial of service. Se detectó un problema en tcpreplay tcpprep versión v4.3.3. Se presenta una vulnerabilidad de desbordamiento del búfer en la región heap de la memoria en la función get_l2len() que puede hacer que tcpprep se bloquee y cause una denegación de servicio • https://github.com/appneta/tcpreplay/issues/617 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EA7K7VKDK2K3SY2DHQQYSCBGZLKPWXJ4 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LC3UMBJFBK5HYUX7H2NGXVFI2I2EMAOF https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M623ONZKOZL5Y7XQNHKXEPV76XYCPXQM https://security.gentoo.org/glsa/202105-21 • CWE-787: Out-of-bounds Write •
CVE-2020-24265
https://notcve.org/view.php?id=CVE-2020-24265
An issue was discovered in tcpreplay tcpprep v4.3.3. There is a heap buffer overflow vulnerability in MemcmpInterceptorCommon() that can make tcpprep crash and cause a denial of service. Se detectó un problema en tcpreplay tcpprep versión v4.3.3. Se presenta una vulnerabilidad de desbordamiento del búfer de pila en la función MemcmpInterceptorCommon() que puede hacer que tcpprep se bloquee y cause una denegación de servicio • https://github.com/appneta/tcpreplay/issues/616 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EA7K7VKDK2K3SY2DHQQYSCBGZLKPWXJ4 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LC3UMBJFBK5HYUX7H2NGXVFI2I2EMAOF https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M623ONZKOZL5Y7XQNHKXEPV76XYCPXQM https://security.gentoo.org/glsa/202105-21 • CWE-787: Out-of-bounds Write •