AVG-211

Package tcpreplay
Status Fixed
Severity High
Type arbitrary code execution
Affected 4.1.0-1
Fixed 4.2.5-1
Current 4.2.6-2 [community]
Ticket None
Created Wed Mar 15 16:35:58 2017
Issue Severity Remote Type Description
CVE-2017-6429 High No Arbitrary code execution
Buffer overflow in the tcpcapinfo utility in tcpreplay before 4.2.0 Beta 1 allows attackers to have unspecified impact via a pcap file with an over-size packet.
Date Advisory Package Description
23 Jun 2017 ASA-201706-29 tcpreplay arbitrary code execution
References
https://github.com/appneta/tcpreplay/commit/d689d14dbcd768c028eab2fb378d849e543dcfe9
https://github.com/appneta/tcpreplay/issues/278
http://www.securityfocus.com/bid/96579