We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2025-48964



Description

ping in iputils through 20240905 allows a denial of service (application error in adaptive ping mode or incorrect data collection) via a crafted ICMP Echo Reply packet, because a zero timestamp can lead to large intermediate values that have an integer overflow when squared during statistics calculations. NOTE: this issue exists because of an incomplete fix for CVE-2025-47268 (that fix was only about timestamp calculations, and it did not account for a specific scenario where the original timestamp in the ICMP payload is zero).

Reserved 2025-05-29 | Published 2025-07-22 | Updated 2025-07-22 | Assigner mitre

References

github.com/iputils/iputils/issues

github.com/...putils/security/advisories/GHSA-25fr-jw29-74f9

bugzilla.suse.com/show_bug.cgi?id=1243772

cve.org (CVE-2025-48964)

nvd.nist.gov (CVE-2025-48964)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2025-48964

Support options

Helpdesk Chat, Email, Knowledgebase
© Copyright 2025 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.