CVE-2019-8376
Description
An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference occurred in the function get_layer4_v6() located at get.c. This can be triggered by sending a crafted pcap file to the tcpreplay-edit binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A NULL pointer dereference in Tcpreplay 4.3.1's get_layer4_v6() function can be triggered by a crafted pcap file, causing a denial of service.
Vulnerability
In Tcpreplay version 4.3.1, the function get_layer4_v6() in get.c contains a NULL pointer dereference vulnerability. When processing a specially crafted pcap file, the function attempts to dereference a NULL pointer, leading to a segmentation fault. The issue is triggered through the tcpreplay-edit binary [1][2].
Exploitation
An attacker must provide a malicious pcap file to the tcpreplay-edit utility (e.g., via command line invocation such as tcpreplay-edit -r 80:84 -s 20 -b -C -m 1500 -P --oneatatime -i $INTERFACE $POC). No authentication or elevated privileges are required; the attacker only needs to supply the crafted input file, which causes the crash during processing [1].
Impact
Successful exploitation results in a denial of service through a segmentation fault (NULL pointer dereference). The official description also notes the possibility of "unspecified other impact," though no further details are provided in the references [1][2].
Mitigation
As of the available references, no fixed version has been announced. Users are advised to monitor the Tcpreplay issue tracker (referenced in [1]) for updates. Fedora package announcements (references [3] and [4]) are inaccessible due to bot protection, so no specific workaround or patch information is confirmed. If no official fix is available, avoid processing untrusted pcap files with tcpreplay-edit [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
3- Range: <= 4.3.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4V3SADKXUSHWTVAPU3WLXBDEQUHRA6ZO/mitrevendor-advisoryx_refsource_FEDORA
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EB3ASS7URTIA3IFSBL2DIWJAFKTBJCAW/mitrevendor-advisoryx_refsource_FEDORA
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MLPY6W7Z7G6PF2JN4LXXHCACYLD4RBG6/mitrevendor-advisoryx_refsource_FEDORA
- www.securityfocus.com/bid/107085mitrevdb-entryx_refsource_BID
- github.com/appneta/tcpreplay/issues/537mitrex_refsource_MISC
- research.loginsoft.com/bugs/null-pointer-dereference-vulnerability-in-function-get_layer4_v6-tcpreplay-4-3-1/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.