Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2025-47268

Опубликовано: 05 мая 2025
Источник: redhat
CVSS3: 6.5
EPSS Низкий

Описание

ping in iputils before 20250602 allows a denial of service (application error or incorrect data collection) via a crafted ICMP Echo Reply packet, because of a signed 64-bit integer overflow in timestamp multiplication.

A flaw was found in iputils ping, where a signed integer overflow occurs in timestamp multiplication. This issue could lead to incorrect timestamp calculations or denial of service when processing crafted ICMP Echo Reply packets.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6iputilsFix deferred
Red Hat Enterprise Linux 7iputilsFix deferred
Red Hat Enterprise Linux 8iputilsFix deferred
Red Hat OpenShift Container Platform 4rhcosFix deferred
Red Hat Enterprise Linux 10iputilsFixedRHSA-2025:942124.06.2025
Red Hat Enterprise Linux 9iputilsFixedRHSA-2025:943224.06.2025
Red Hat Enterprise Linux 9iputilsFixedRHSA-2025:943224.06.2025
Red Hat Enterprise Linux 9.2 Update Services for SAP SolutionsiputilsFixedRHSA-2025:1132116.07.2025
Red Hat Enterprise Linux 9.4 Extended Update SupportiputilsFixedRHSA-2025:1132016.07.2025

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-190
https://bugzilla.redhat.com/show_bug.cgi?id=2364090iputils: Signed Integer Overflow in Timestamp Multiplication in iputils ping

EPSS

Процентиль: 76%
0.00908
Низкий

6.5 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2025-47268

CVSS3: 6.5
ubuntu
11 месяцев назад

ping in iputils before 20250602 allows a denial of service (application error or incorrect data collection) via a crafted ICMP Echo Reply packet, because of a signed 64-bit integer overflow in timestamp multiplication.

nvd логотип

CVE-2025-47268

CVSS3: 6.5
nvd
11 месяцев назад

ping in iputils before 20250602 allows a denial of service (application error or incorrect data collection) via a crafted ICMP Echo Reply packet, because of a signed 64-bit integer overflow in timestamp multiplication.

msrc логотип

CVE-2025-47268

CVSS3: 6.5
msrc
8 месяцев назад

ping in iputils before 20250602 allows a denial of service

debian логотип

CVE-2025-47268

CVSS3: 6.5
debian
11 месяцев назад

ping in iputils before 20250602 allows a denial of service (applicatio ...

suse-cvrf логотип

SUSE-SU-2025:1771-1

suse-cvrf
5 месяцев назад

Security update for iputils

EPSS

Процентиль: 76%
0.00908
Низкий

6.5 Medium

CVSS3