tcpreplay: fix CVE-2025-51006 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Archana Polampalli <archana.polampalli@windriver.com>	2025-09-25 14:49:52 +0530
committer	Anuj Mittal <anuj.mittal@oss.qualcomm.com>	2026-01-26 10:13:56 +0530
commit	0a2ce1c4dd9d816be9953acee7535e483fd6dd8e (patch)
tree	78ff164c9c8d0f9d72a426b35ccbffdf518ff200 /meta-python/recipes-devtools/python/python3-pillow_10.3.0.bb
parent	cb4570120b0d033c728a788e04b7c75129529a4e (diff)
download	meta-openembedded-0a2ce1c4dd9d816be9953acee7535e483fd6dd8e.tar.gz

tcpreplay: fix CVE-2025-51006

Within tcpreplay's tcprewrite, a double free vulnerability has been identified in the dlt_linuxsll2_cleanup() function in plugins/dlt_linuxsll2/linuxsll2.c. This vulnerability is triggered when tcpedit_dlt_cleanup() indirectly invokes the cleanup routine multiple times on the same memory region. By supplying a specifically crafted pcap file to the tcprewrite binary, a local attacker can exploit this flaw to cause a Denial of Service (DoS) via memory corruption. Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>

Diffstat (limited to 'meta-python/recipes-devtools/python/python3-pillow_10.3.0.bb')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: