]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commit
projects / thirdparty / openembedded / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1c908b1) | patch
iputils: Security fix for CVE-2025-47268
authorYi Zhao <yi.zhao@windriver.com>
Fri, 16 May 2025 02:18:09 +0000 (10:18 +0800)
committerSteve Sakoman <steve@sakoman.com>
Mon, 19 May 2025 16:38:17 +0000 (09:38 -0700)
commit59f0d3befe0c828bdc16664af1f8b64b7f3911e7
tree5cfd8de45d154a1bca5f328da1bacd51657ea0d7tree | snapshot
parent1c908b1c44a006b6707a1f0da59781a6750cf8cecommit | diff
iputils: Security fix for CVE-2025-47268

CVE-2025-47268
ping in iputils through 20240905 allows a denial of service (application
error or incorrect data collection) via a crafted ICMP Echo Reply
packet, because of a signed 64-bit integer overflow in timestamp
multiplication.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-47268

Patch from:
https://github.com/iputils/iputils/commit/070cfacd7348386173231fb16fad4983d4e6ae40

Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
meta/recipes-extended/iputils/iputils/CVE-2025-47268.patch [new file with mode: 0644] blob
meta/recipes-extended/iputils/iputils_20240905.bb diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core