CNNVD-202507-2908 Information

CNNVD ID

CNNVD-202507-2908

Related CVE

CVE-2025-48964

• CNNVD Published: 2025-07-22

Description (Chinese)

iputils是iputils开源的一组用于Linux网络的小型旧实用程序。 iputils 20240905及之前版本存在输入验证错误漏洞，该漏洞源于特制的ICMP Echo Reply数据包可能导致整数溢出，引发拒绝服务。

Description (English)

iputils is a small group of older practical applications for the Linux network that open the iputils. Imputils 202400905 and previous versions have input validation bugs that stem from specially made ICMP Echo Reply data packages that can result in in integer spills and denials of services.

Hazard Level

High

Vulnerability Type

输入验证错误

Affected Vendor

iputils

Published

2025-07-22

Last Modified

2026-02-24

References

https://github.com/iputils/iputils/commit/afa36390394a6e0cceba03b52b59b6d41710608c https://github.com/iputils/iputils/security/advisories/GHSA-25fr-jw29-74f9 https://github.com/iputils/iputils/releases/tag/20250602 https://github.com/iputils/iputils/issues https://bugzilla.suse.com/show_bug.cgi?id=1243772 https://vigilance.fr/vulnerability/iputils-integer-overflow-via-ping-47767 https://nvd.nist.gov/vuln/detail/CVE-2025-48964

Patch

https://github.com/iputils/iputils/releases