Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 830640 (CVE-2021-41043)

Summary: <net-analyzer/tcpslice-1.5: Use after free in tcpslice triggers AddressSanitizer (CVE-2021-41043)
Product: Gentoo Security Reporter: filip ambroz <filip.ambroz>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: IN_PROGRESS ---    
Severity: minor CC: netmon
Priority: Normal Keywords: PullRequest
Version: unspecified   
Hardware: All   
OS: Linux   
URL: https://github.com/the-tcpdump-group/tcpslice/issues/11
See Also: https://github.com/gentoo/gentoo/pull/23670
Whiteboard: B4 [glsa? cleanup]
Package list:
Runtime testing required: ---
Bug Depends on: 833732    
Bug Blocks:    

Description filip ambroz 2022-01-05 14:35:40 UTC 
Use after free in tcpslice triggers AddressSanitizer, NO OTHER CONFIRMED IMPACT.

[Tested on]
version 1.5-PRE-GIT
version 1.2a3

[Command]
tcpslice -w a.txt heap.pcap

[Result]
Segmentation fault


Fixed in version 1.5
Comment 1 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2022-01-06 04:21:42 UTC 
Thanks for reporting!
Comment 2 Larry the Git Cow gentoo-dev 2022-01-09 07:41:05 UTC 
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=fc753cec4a8697606ab5eeb9299097d1ffededd3

commit fc753cec4a8697606ab5eeb9299097d1ffededd3
Author:     John Helmert III <ajak@gentoo.org>
AuthorDate: 2022-01-06 06:56:31 +0000
Commit:     John Helmert III <ajak@gentoo.org>
CommitDate: 2022-01-09 07:40:26 +0000

    net-analyzer/tcpslice: add 1.5
    
    Bug: https://bugs.gentoo.org/830640
    Signed-off-by: John Helmert III <ajak@gentoo.org>

 net-analyzer/tcpslice/Manifest            |  2 ++
 net-analyzer/tcpslice/tcpslice-1.5.ebuild | 21 +++++++++++++++++++++
 2 files changed, 23 insertions(+)