CVE-2025-47268

Published
View on NVD ↗
CVSS v3
6.5
MEDIUM
CVSS v2
N/A
Affected
2
PROJECTS

Description

ping in iputils before 20250602 allows a denial of service (application error or incorrect data collection) via a crafted ICMP Echo Reply packet, because of a signed 64-bit integer overflow in timestamp multiplication.

iputils/iputils
iputils/iputils
The iputils package is set of small old utilities for Linux networking.
GitHubGitHub
721
Zephkek/ping-rtt-overflow
Zephkek/ping-rtt-overflow
PoC showing how crafted ICMP replies can overflow the RTT math in iputils ping_common.c
GitHubGitHub
3