Security update for tcpreplay
This update for tcpreplay fixes the following issues:
Update to 4.4.4:
* overflow check fix for parse_mpls.
* tcpreplay-edit: prevent L2 flooding of ipv6 unicast packets.
* CVE-2023-27786: bugs caused by strtok_r. (boo#1209416)
* CVE-2023-27783 reachable assert in tcpedit_dlt_cleanup (boo#1209413)
* reachable assert in fast_edit_packet.
-
Submitted by
Andreas Stieger (AndreasStieger)
Fixed bugs
bnc#1209416
VUL-1: CVE-2023-27786: tcpreplay: Denial of service via the macinstring function
bnc#1209413
VUL-1: CVE-2023-27783: tcpreplay: Denial of service via the tcpedit_dlt_cleanup function at plugins/dlt_plugins.c.
