]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core-contrib.git/commit
projects / thirdparty / openembedded / openembedded-core-contrib.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 68ee8d1) | patch
iputils: Security fix for CVE-2025-47268
authorYi Zhao <yi.zhao@windriver.com>
Wed, 14 May 2025 07:35:30 +0000 (15:35 +0800)
committerSteve Sakoman <steve@sakoman.com>
Thu, 15 May 2025 16:42:55 +0000 (09:42 -0700)
commit6b0dd564249754ab8ec20ce69b137466e051501e
tree76c3ad1632221603a7507d2e05fda623cc49e19etree
parent68ee8d16fa5419acba9111d3aca285be92bd93d3commit | diff
iputils: Security fix for CVE-2025-47268

CVE-2025-47268
ping in iputils through 20240905 allows a denial of service (application
error or incorrect data collection) via a crafted ICMP Echo Reply
packet, because of a signed 64-bit integer overflow in timestamp
multiplication.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-47268

Patch from:
https://github.com/iputils/iputils/commit/070cfacd7348386173231fb16fad4983d4e6ae40

Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
meta/recipes-extended/iputils/iputils/CVE-2025-47268.patch [new file with mode: 0644] blob
meta/recipes-extended/iputils/iputils_20240117.bb diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core-contrib