CVE-2025-48964

NameCVE-2025-48964
Descriptionping in iputils before 20250602 allows a denial of service (application error in adaptive ping mode or incorrect data collection) via a crafted ICMP Echo Reply packet, because a zero timestamp can lead to large intermediate values that have an integer overflow when squared during statistics calculations. NOTE: this issue exists because of an incomplete fix for CVE-2025-47268 (that fix was only about timestamp calculations, and it did not account for a specific scenario where the original timestamp in the ICMP payload is zero).
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
iputils (PTS)bullseye3:20210202-1fixed
bookworm3:20221126-1+deb12u1fixed
trixie3:20240905-3fixed
forky, sid3:20250605-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
iputilssource(unstable)(not affected)

Notes

- iputils <not-affected> (Incomplete fix for CVE-2025-47268 no applied; unimportant)
https://github.com/iputils/iputils/security/advisories/GHSA-25fr-jw29-74f9
Fixed by: https://github.com/iputils/iputils/commit/afa36390394a6e0cceba03b52b59b6d41710608c
Negligible security impact
Search for package or bug name: Reporting problems