Detections
Analytics

Fedora 40 : tcpreplay (2024-ecd4cc8435)

medium Nessus Plugin ID 202743

Language:

Synopsis

The remote Fedora host is missing one or more security updates.

Description

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-ecd4cc8435 advisory.

 Announcing v4.5.1

 This release contains contributions from a record number of new contributors. This is greatly appreciated since I am a team of one, and do Tcpreplay maintenance in my spare time.

 There are many bug fixes and new features. Most notable features:

 - AF_XDP socket support - if you have a newer Linux kernel, you will be able to transmit at line rates without having to install 3rd party kernel modules (e.g. netmap, PF_RING)
 - -w tcpreplay option - this overrides the -i option, and allows you to write to a PCAP file rather than an interface
 - --include and --exclude tcpreplay options - allows replay of a list of specific packet numbers to replay. This may slow things down, so consider using in combination with -w.
 - --fixhdrlen tcpreplay option - added to control action on packet length changes
 - -W tcpreplay option - suppress warnings when replaying
 - SLL2( Linux cooked capture encapsulation v2)
 - Haiku support

 What's Changed

 - Add support for LINUX_SLL2 by @btriller in #728
 - Feature #727 - Linux SLL v2 by @fklassen in #820
 - Bug #779 - honour overflow for all PPS values by @fklassen in #821
 - AF_XDP socket extension using libxdp api by @plangarbalint in #797
 - Feature #822 - AF_XDP socket extension by @fklassen in #823
 - Nanosec accurate packet processing by @plangarbalint in #796
 - Handle IPv6 fragment extension header by @ChuckCottrill in #832
 - Bug #837 - handle IPv6 fragment extension header by @fklassen in #838
 - Feature #796 - nanosecond packet processing by @fklassen in #836
 - configure.ac: unify search dirs for pcap and add lib32 by @shr-project in #819
 - Feature #839 - add pull request template by @fklassen in #840
 - ipv6 - add check for extension header length by @GabrielGanne in #842
 - Bug #827 PR #842 IPv6 extension header - staging by @fklassen in #859
 - add check for empty cidr by @GabrielGanne in #843
 - Bug #824 and PR #843: check for empty CIDR by @fklassen in #860
 - Add option to turn on/off fix packet header length by @ChuckCottrill in #846
 - Bug #703 #844 PR #846: optionally fix packet header length --fixhdrlen by @fklassen in #861
 - Bug 863: fix nansecond timestamp regression by @fklassen in #865
 - autotools - AC_HELP_STRING is obsolete in 2.70 by @GabrielGanne in #856
 - some Haiku support by @infrastation in #847
 - configure.ac: do not run conftest in case of cross compilation by @ChenQi1989 in #849
 - dlt_jnpr_ether_cleanup: check config before cleanup by @Marsman1996 in #851
 - Fix recursive tcpedit cleanup by @GabrielGanne in #855
 - Bug #813: back out PR #855 by @fklassen in #866
 - Bug #867 - run regfree() on close by @fklassen in #868
 - Bug #869 tcpprep memory leak include exclude by @fklassen in #870
 - Bug #811 - add check for invalid jnpr header length by @fklassen in #872
 - Bug #792 avoid assertion and other fixes by @fklassen in #873
 - Bug #844 tap: ignore TUNSETIFF EBUSY errors by @fklassen in #874
 - Bug #876 - add missing free_umem_and_xsk function by @fklassen in #877
 - Feature #878 - add -w / --suppress-warning option by @fklassen in #879
 - Bug #835 false unsupported dlt warnings on 802.3 (Ethernet I) and LLC by @fklassen in #880
 - Feature #884 include exclude options by @fklassen in #885
 - Feature #853 direct traffic to pcap by @fklassen in #871
 - Feature #853 restore missing -P command by @fklassen in #887
 - Bug #888: check for map == NULL in cidr.c by @fklassen in #889


Tenable has extracted the preceding description block directly from the Fedora security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Update the affected tcpreplay package.

See Also

https://bodhi.fedoraproject.org/updates/FEDORA-2024-ecd4cc8435

Plugin Details

Severity: Medium

ID: 202743

File Name: fedora_2024-ecd4cc8435.nasl

Version: 1.1

Type: local

Agent: unix

Published: 7/21/2024

Updated: 7/21/2024

Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.4

CVSS v2

Risk Factor: Medium

Base Score: 4.3

Temporal Score: 3.2

Vector: CVSS2#AV:L/AC:L/Au:S/C:P/I:P/A:P

CVSS Score Source: CVE-2024-3024

CVSS v3

Risk Factor: Medium

Base Score: 5.3

Temporal Score: 4.6

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:fedoraproject:fedora:40, p-cpe:/a:fedoraproject:fedora:tcpreplay

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Exploit Ease: No known exploits are available

Patch Publication Date: 7/12/2024

Vulnerability Publication Date: 3/28/2024

Reference Information

CVE: CVE-2024-3024