Advisories » MGASA-2025-0163

Updated iputils packages fix security vulnerability

Publication date: 24 May 2025
Modification date: 24 May 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-47268

Description

ping in iputils through 20240905 allows a denial of service (application
error or incorrect data collection) via a crafted ICMP Echo Reply
packet, because of a signed 64-bit integer overflow in timestamp
multiplication. (CVE-2025-47268
                

References

• https://bugs.mageia.org/show_bug.cgi?id=34297
• https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LHFUD3TRXO7AHOVSFWLKP2MKB77PEQBK/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-47268

SRPMS

9/core

• iputils-20221126-1.1.mga9