170 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-42108
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: net: rswitch: Avoid use-after-free in rswitchpoll The use-after-free is actually in...
CBL Mariner 2.0 Security Update: iputils (CVE-2025-47268)
The version of iputils installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-47268 advisory. - ping in iputils before 20250602 allows a denial of service application error or incorrect data collection v...
Ubuntu 22.04 LTS / 24.04 LTS / 25.04 : iputils vulnerability (USN-7670-1)
The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7670-1 advisory. It was discovered that the iputils ping utility incorrectly handled certain ICMP Echo Reply packets. A remote attacker could possibly...
OESA-2025-1891 iputils security update
The iputils package contains basic utilities for monitoring a network, including ping. The ping command sends a series of ICMP protocol ECHOREQUEST packets to a specified network host to discover whether the target machine is alive and receiving network traffic. Security Fixes: ping in iputils...
USN-7670-1 iputils vulnerability
It was discovered that the iputils ping utility incorrectly handled certain ICMP Echo Reply packets. A remote attacker could possibly use this issue to cause iputils to consume resources, leading to a denial of service...
CVE-2025-48964
ping in iputils before 20250602 allows a denial of service application error in adaptive ping mode or incorrect data collection via a crafted ICMP Echo Reply packet, because a zero timestamp can lead to large intermediate values that have an integer overflow when squared during statistics...
CVE-2025-48964
ping in iputils before 20250602 allows a denial of service application error in adaptive ping mode or incorrect data collection via a crafted ICMP Echo Reply packet, because a zero timestamp can lead to large intermediate values that have an integer overflow when squared during statistics...
AZL-65886 CVE-2025-48964 affecting package iputils for versions less than 20211215-4
ping in iputils before 20250602 allows a denial of service application error in adaptive ping mode or incorrect data collection via a crafted ICMP Echo Reply packet, because a zero timestamp can lead to large intermediate values that have an integer overflow when squared during statistics...
CVE-2025-48964
ping in iputils before 20250602 allows a denial of service application error in adaptive ping mode or incorrect data collection via a crafted ICMP Echo Reply packet, because a zero timestamp can lead to large intermediate values that have an integer overflow when squared during statistics...
CVE-2025-48964
ping in iputils before 20250602 allows a denial of service application error in adaptive ping mode or incorrect data collection via a crafted ICMP Echo Reply packet, because a zero timestamp can lead to large intermediate values that have an integer overflow when squared during statistics...
CVE-2025-48964
ping in iputils before 20250602 allows a denial of service application error in adaptive ping mode or incorrect data collection via a crafted ICMP Echo Reply packet, because a zero timestamp can lead to large intermediate values that have an integer overflow when squared during statistics...
CVE-2025-48964
The affected software is iputils. The vulnerability (CVE-2025-48964) arises in the handling of ICMP Echo Reply packets when using ping in adaptive mode, where a zero timestamp can cause large intermediate values that overflow when squared during statistics calculations, leading to a denial of ser...
CVE-2025-48964
ping in iputils before 20250602 allows a denial of service application error in adaptive ping mode or incorrect data collection via a crafted ICMP Echo Reply packet, because a zero timestamp can lead to large intermediate values that have an integer overflow when squared during statistics...
Huawei EulerOS: Security Advisory for iputils (EulerOS-SA-2025-1824)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
iputils: Signed Integer Overflow in Timestamp Multiplication in iputils ping
A flaw was found in iputils ping, where a signed integer overflow occurs in timestamp multiplication. This issue could lead to incorrect timestamp calculations or denial of service when processing crafted ICMP Echo Reply packets...
SUSE CVE-2025-48964
ping in iputils before 20250602 allows a denial of service application error in adaptive ping mode or incorrect data collection via a crafted ICMP Echo Reply packet, because a zero timestamp can lead to large intermediate values that have an integer overflow when squared during statistics...
Mageia: Security Advisory (MGASA-2025-0163)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2025-0163 Updated iputils packages fix security vulnerability
ping in iputils through 20240905 allows a denial of service application error or incorrect data collection via a crafted ICMP Echo Reply packet, because of a signed 64-bit integer overflow in timestamp multiplication. CVE-2025-47268...
CVE-2019-6989
TP-Link TL-WR940N is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the ipAddrDispose function. By sending specially crafted ICMP echo request packets, a remote authenticated attacker could overflow a buffer and execute arbitrary code on the system with elevate...
CVE-2009-1683
The Telephony component in Apple iPhone OS 1.0 through 2.2.1 and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to cause a denial of service device reset via a crafted ICMP echo request, which triggers an assertion error related to a "logic issue."...