CVE-2023-27789

Summary

CVE	CVE-2023-27789
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2023-03-16 15:15:00 UTC
Updated	2023-11-07 04:10:00 UTC
Description	An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the cidr2cidr function at the cidr.c:178 endpoint.

Risk And Classification

Problem Types: CWE-617

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Broadcom	Tcpreplay	4.4.3	All	All	All

References

Reference	Source	Link	Tags
[SECURITY] Fedora 36 Update: tcpreplay-4.4.3-3.fc36 - package-announce - Fedora Mailing-Lists		lists.fedoraproject.org
[SECURITY] Fedora 38 Update: tcpreplay-4.4.3-3.fc38 - package-announce - Fedora Mailing-Lists		lists.fedoraproject.org
[SECURITY] Fedora 38 Update: tcpreplay-4.4.3-3.fc38 - package-announce - Fedora Mailing-Lists	FEDORA	lists.fedoraproject.org
[SECURITY] Fedora 37 Update: tcpreplay-4.4.3-3.fc37 - package-announce - Fedora Mailing-Lists	FEDORA	lists.fedoraproject.org
[Bug] Reachable assertion in cidr2cidr() at cidr.c:178 · Issue #784 · appneta/tcpreplay · GitHub	MISC	github.com
Fix bugs caused by strtok_r by Marsman1996 · Pull Request #783 · appneta/tcpreplay · GitHub	MISC	github.com
[SECURITY] Fedora 37 Update: tcpreplay-4.4.3-3.fc37 - package-announce - Fedora Mailing-Lists		lists.fedoraproject.org
[SECURITY] Fedora 36 Update: tcpreplay-4.4.3-3.fc36 - package-announce - Fedora Mailing-Lists	FEDORA	lists.fedoraproject.org
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

283982 Fedora Security Update for tcpreplay (FEDORA-2023-7ffeed7339)
283983 Fedora Security Update for tcpreplay (FEDORA-2023-96ffd40fd4)
284147 Fedora Security Update for tcpreplay (FEDORA-2023-37bdea9241)