Summary: | <net-analyzer/tcpreplay-4.3.4: Multiple vulnerabilities (CVE-2020-24265, CVE-2020-24266) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | filip ambroz <filip.ambroz> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | netmon |
Priority: | Normal | Flags: | nattka:
sanity-check+
|
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://github.com/appneta/tcpreplay/issues/616 | ||
Whiteboard: | B3 [glsa+ cve] | ||
Package list: |
net-analyzer/tcpreplay-4.3.4
|
Runtime testing required: | --- |
Description
filip ambroz
2020-10-20 07:18:25 UTC
All versions are likely affected, CVE text is just vague sometimes. There's patches available in PR(s) but not merged. The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=57e374eeca287bc0071422169c85a252d44c5229 commit 57e374eeca287bc0071422169c85a252d44c5229 Author: Sam James <sam@gentoo.org> AuthorDate: 2021-05-04 21:22:36 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2021-05-04 21:25:25 +0000 net-analyzer/tcpreplay: add 4.3.4 Bug: https://bugs.gentoo.org/750344 Signed-off-by: Sam James <sam@gentoo.org> net-analyzer/tcpreplay/Manifest | 1 + net-analyzer/tcpreplay/tcpreplay-4.3.4.ebuild | 77 +++++++++++++++++++++++++++ 2 files changed, 78 insertions(+) amd64 done x86 done all arches done The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=840391c3fc715e59f7d5ff2c531b6351273d5fa1 commit 840391c3fc715e59f7d5ff2c531b6351273d5fa1 Author: Thomas Deutschmann <whissi@gentoo.org> AuthorDate: 2021-05-25 13:59:19 +0000 Commit: Thomas Deutschmann <whissi@gentoo.org> CommitDate: 2021-05-25 13:59:28 +0000 net-analyzer/tcpreplay: security cleanup Bug: https://bugs.gentoo.org/750344 Package-Manager: Portage-3.0.18, Repoman-3.0.3 Signed-off-by: Thomas Deutschmann <whissi@gentoo.org> net-analyzer/tcpreplay/Manifest | 1 - net-analyzer/tcpreplay/tcpreplay-4.3.3.ebuild | 77 --------------------------- 2 files changed, 78 deletions(-) New GLSA request filed. This issue was resolved and addressed in GLSA 202105-21 at https://security.gentoo.org/glsa/202105-21 by GLSA coordinator Thomas Deutschmann (whissi). |