CVE-2018-17974 -- tcpreplayID: oval:org.secpod.oval:def:2001107 | Date: (C)2019-04-22 (M)2022-04-04 |
Class: VULNERABILITY | Family: unix |
An issue was discovered in Tcpreplay 4.3.0 beta1. A heap-based buffer over-read was triggered in the function dlt_en10mb_encode of the file plugins/dlt_en10mb/en10mb.c, due to inappropriate values in the function memmove. The length can be larger than source value because the function fails to ensure the length of a packet is valid. This leads to Denial of Service.
Platform: |
Debian 8.x |
Debian 9.x |