CVE-2025-51005

NameCVE-2025-51005
DescriptionA heap-buffer-overflow vulnerability exists in the tcpliveplay utility of the tcpreplay-4.5.1. When a crafted pcap file is processed, the program incorrectly handles memory in the checksum calculation logic at do_checksum_math_liveplay in tcpliveplay.c, leading to a possible denial of service.
SourceCVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
tcpreplay (PTS)bullseye4.3.3-2vulnerable
bookworm4.4.3-1vulnerable
trixie4.5.1-1vulnerable
forky, sid4.5.2-1vulnerable

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
tcpreplaysource(unstable)(unfixed)unimportant

Notes

https://github.com/appneta/tcpreplay/issues/925
tcplivereplay will be removed in the 4.6 release
Crash in CLI tool, no security impact
Search for package or bug name: Reporting problems