Wind River Support Network

HomeDefectsLIN9-7128

Fixed

LIN9-7128 : Security Advisory - tcpreplay - CVE-2018-13112

Created: Jul 16, 2018 Updated: Nov 19, 2018

Resolved Date: Nov 12, 2018

Found In Version: 9.0.0.16

Fix Version: 9.0.0.19

Severity: Standard

Applicable for: Wind River Linux 9

Component/s: Userspace

Description

get_l2len in common/get.c in Tcpreplay 4.3.0 beta 1 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via crafted packets, as demonstrated by tcpprep.

https://nvd.nist.gov/vuln/detail/CVE-2018-13112

Other Downloads

Wind River Linux 9.0.0.19
Wind River Linux 9.0.0.20
Wind River Linux 9.0.0.21
Wind River Linux 9.0.0.22
Wind River Linux 9.0.0.23
Wind River Linux 9.0.0.24
Wind River Linux 9.0.0.25
Wind River Linux 9.0.0.26

CVEs

CVE-2018-13112