tcpreplay-4.5.2-1.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2025:15728-1 Final 1 1 2025-11-11T00:00:00Z current 2025-11-11T00:00:00Z 2025-11-11T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z tcpreplay-4.5.2-1.1 on GA media These are all security issues fixed in the tcpreplay-4.5.2-1.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2025-15728 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2025-51006/ SUSE CVE CVE-2025-51006 page https://www.suse.com/security/cve/CVE-2025-9157/ SUSE CVE CVE-2025-9157 page openSUSE Tumbleweed tcpreplay-4.5.2-1.1 tcpreplay-4.5.2-1.1 as a component of openSUSE Tumbleweed Within tcpreplay's tcprewrite, a double free vulnerability has been identified in the dlt_linuxsll2_cleanup() function in plugins/dlt_linuxsll2/linuxsll2.c. This vulnerability is triggered when tcpedit_dlt_cleanup() indirectly invokes the cleanup routine multiple times on the same memory region. By supplying a specifically crafted pcap file to the tcprewrite binary, a local attacker can exploit this flaw to cause a Denial of Service (DoS) via memory corruption. CVE-2025-51006 openSUSE Tumbleweed:tcpreplay-4.5.2-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2025-51006.html CVE-2025-51006 https://bugzilla.suse.com/1250356 SUSE Bug 1250356 A vulnerability was determined in appneta tcpreplay up to 4.5.2-beta2. The impacted element is the function untrunc_packet of the file src/tcpedit/edit_packet.c of the component tcprewrite. Executing manipulation can lead to use after free. It is possible to launch the attack on the local host. The exploit has been publicly disclosed and may be utilized. This patch is called 73008f261f1cdf7a1087dc8759115242696d35da. Applying a patch is advised to resolve this issue. CVE-2025-9157 openSUSE Tumbleweed:tcpreplay-4.5.2-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2025-9157.html CVE-2025-9157 https://bugzilla.suse.com/1248322 SUSE Bug 1248322