Broadcom Tcpreplay vulnerabilities

CVE-2022-37049 [HIGH] CVE-2022-37049: The component tcpprep in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in The component tcpprep in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in parse_mpls at common/get.c:150. NOTE: this is different from CVE-2022-27942.

CVE-2022-28487 [HIGH] CWE-401 CVE-2022-28487: Tcpreplay version 4.4.1 contains a memory leakage flaw in fix_ipv6_checksums() function. The highest Tcpreplay version 4.4.1 contains a memory leakage flaw in fix_ipv6_checksums() function. The highest threat from this vulnerability is to data confidentiality.

CVE-2022-27418 [HIGH] CWE-787 CVE-2022-27418: Tcpreplay v4.4.1 has a heap-based buffer overflow in do_checksum_math at /tcpedit/checksum.c. Tcpreplay v4.4.1 has a heap-based buffer overflow in do_checksum_math at /tcpedit/checksum.c.

CVE-2022-27416 [HIGH] CWE-415 CVE-2022-27416: Tcpreplay v4.4.1 was discovered to contain a double-free via __interceptor_free. Tcpreplay v4.4.1 was discovered to contain a double-free via __interceptor_free.

CVE-2022-27942 [HIGH] CWE-125 CVE-2022-27942: tcpprep in Tcpreplay 4.4.1 has a heap-based buffer over-read in parse_mpls in common/get.c. tcpprep in Tcpreplay 4.4.1 has a heap-based buffer over-read in parse_mpls in common/get.c.

CVE-2022-27941 [HIGH] CWE-125 CVE-2022-27941: tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_l2len_protocol in common/get. tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_l2len_protocol in common/get.c.

CVE-2022-27940 [HIGH] CWE-125 CVE-2022-27940: tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_ipv6_next in common/get.c. tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_ipv6_next in common/get.c.

CVE-2022-27939 [MEDIUM] CWE-617 CVE-2022-27939: tcprewrite in Tcpreplay 4.4.1 has a reachable assertion in get_layer4_v6 in common/get.c. tcprewrite in Tcpreplay 4.4.1 has a reachable assertion in get_layer4_v6 in common/get.c.

CVE-2022-25484 [MEDIUM] CWE-617 CVE-2022-25484: tcpprep v4.4.1 has a reachable assertion (assert(l2len > 0)) in packet2tree() at tree.c in tcpprep v tcpprep v4.4.1 has a reachable assertion (assert(l2len > 0)) in packet2tree() at tree.c in tcpprep v4.4.1.

CVE-2021-45387 [MEDIUM] CWE-617 CVE-2021-45387: tcpreplay 4.3.4 has a Reachable Assertion in add_tree_ipv4() at tree.c. tcpreplay 4.3.4 has a Reachable Assertion in add_tree_ipv4() at tree.c.

CVE-2021-45386 [MEDIUM] CWE-617 CVE-2021-45386: tcpreplay 4.3.4 has a Reachable Assertion in add_tree_ipv6() at tree.c tcpreplay 4.3.4 has a Reachable Assertion in add_tree_ipv6() at tree.c

CVE-2020-23273 [MEDIUM] CWE-787 CVE-2020-23273: Heap-buffer overflow in the randomize_iparp function in edit_packet.c. of Tcpreplay v4.3.2 allows at Heap-buffer overflow in the randomize_iparp function in edit_packet.c. of Tcpreplay v4.3.2 allows attackers to cause a denial of service (DOS) via a crafted pcap.

CVE-2020-18976 [MEDIUM] CVE-2020-18976: Buffer Overflow in Tcpreplay v4.3.2 allows attackers to cause a Denial of Service via the 'do_checks Buffer Overflow in Tcpreplay v4.3.2 allows attackers to cause a Denial of Service via the 'do_checksum' function in 'checksum.c'. It can be triggered by sending a crafted pcap file to the 'tcpreplay-edit' binary. This issue is different than CVE-2019-8381.

CVE-2020-24265 [HIGH] CWE-787 CVE-2020-24265: An issue was discovered in tcpreplay tcpprep v4.3.3. There is a heap buffer overflow vulnerability i An issue was discovered in tcpreplay tcpprep v4.3.3. There is a heap buffer overflow vulnerability in MemcmpInterceptorCommon() that can make tcpprep crash and cause a denial of service.

CVE-2020-24266 [HIGH] CWE-787 CVE-2020-24266: An issue was discovered in tcpreplay tcpprep v4.3.3. There is a heap buffer overflow vulnerability i An issue was discovered in tcpreplay tcpprep v4.3.3. There is a heap buffer overflow vulnerability in get_l2len() that can make tcpprep crash and cause a denial of service.

CVE-2020-12740 [CRITICAL] CWE-125 CVE-2020-12740: tcprewrite in Tcpreplay through 4.3.2 has a heap-based buffer over-read during a get_c operation. Th tcprewrite in Tcpreplay through 4.3.2 has a heap-based buffer over-read during a get_c operation. The issue is being triggered in the function get_ipv6_next() at common/get.c.

CVE-2019-8381 [HIGH] CWE-119 CVE-2019-8381: An issue was discovered in Tcpreplay 4.3.1. An invalid memory access occurs in do_checksum in checks An issue was discovered in Tcpreplay 4.3.1. An invalid memory access occurs in do_checksum in checksum.c. It can be triggered by sending a crafted pcap file to the tcpreplay-edit binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact.

CVE-2019-8377 [HIGH] CWE-476 CVE-2019-8377: An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference occurred in the function get_ An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference occurred in the function get_ipv6_l4proto() located at get.c. This can be triggered by sending a crafted pcap file to the tcpreplay-edit binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact.

CVE-2019-8376 [HIGH] CWE-476 CVE-2019-8376: An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference occurred in the function get_ An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference occurred in the function get_layer4_v6() located at get.c. This can be triggered by sending a crafted pcap file to the tcpreplay-edit binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact.

CVE-2018-20553 [HIGH] CWE-125 CVE-2018-20553: Tcpreplay before 4.3.1 has a heap-based buffer over-read in get_l2len in common/get.c. Tcpreplay before 4.3.1 has a heap-based buffer over-read in get_l2len in common/get.c.