SB2019070836 - Out-of-bounds read in tcpflow (Alpine package)
Published: July 8, 2019
Security Bulletin ID
SB2019070836
Severity
Medium
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Remote access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Out-of-bounds read (CVE-ID: CVE-2018-18409)
The vulnerability allows a remote attacker to gain access to perform a denial of service attack.
The vulnerability exists due to a boundary condition within the setbit() function in iptree.h in tcpflow. A remote attacker can pass specially crafted data to the application, trigger a stack-based buffer over-read and perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.alpinelinux.org/aports/commit/?id=5980636df639b003f167d9cb3241fbcf65ea2c56
- https://git.alpinelinux.org/aports/commit/?id=972db59df0f05f0049167e6a30c3b0c23960afe1
- https://git.alpinelinux.org/aports/commit/?id=e0bb1e65d966c070e890651d3e8a4ab236b03cbf
- https://git.alpinelinux.org/aports/commit/?id=dfd18c983b4fd740db5bed3faa8e646cf851803f
- https://git.alpinelinux.org/aports/commit/?id=22a1991b6aefae41eafb2721f112e2d353c4e224
- https://git.alpinelinux.org/aports/commit/?id=3f91efa541d1fecaccdc351c776d81176cb0d2da
- https://git.alpinelinux.org/aports/commit/?id=4018db3cdac1d0eef1ad039d1a9120fa79e04b58
- https://git.alpinelinux.org/aports/commit/?id=5d1740c1d6657b8588cf9055efbe7fd47ef5aab2
- https://git.alpinelinux.org/aports/commit/?id=f9f4e0e8b1cc5aeab558b091c9a9d003303d1d6e