CVE-2019-8381 log

Source
Severity High
Remote No
Type Arbitrary code execution
Description
An issue was discovered in tcpreplay 4.3.1. An invalid memory access occurs in do_checksum in checksum.c. It can be triggered by sending a crafted pcap file to the tcpreplay-edit binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact.
Group Package Affected Fixed Severity Status Ticket
AVG-902 tcpreplay 4.3.1-1 4.3.2-1 High Fixed
Date Advisory Group Package Severity Type
06 May 2019 ASA-201905-5 AVG-902 tcpreplay High multiple issues
References
https://research.loginsoft.com/bugs/invalid-memory-access-vulnerability-in-function-do_checksum-tcpreplay-4-3-1/
https://github.com/appneta/tcpreplay/issues/538
https://github.com/appneta/tcpreplay/pull/548/commits/dae97cbafc5c06ebbc6b34e76ba614104f1b73e1