CVE-2025-48964

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://bugzilla.suse.com/show_bug.cgi?id=1243772", "name": "https://bugzilla.suse.com/show_bug.cgi?id=1243772", "tags": [], "refsource": ""}, {"url": "https://github.com/iputils/iputils/commit/afa36390394a6e0cceba03b52b59b6d41710608c", "name": "https://github.com/iputils/iputils/commit/afa36390394a6e0cceba03b52b59b6d41710608c", "tags": [], "refsource": ""}, {"url": "https://github.com/iputils/iputils/issues", "name": "https://github.com/iputils/iputils/issues", "tags": [], "refsource": ""}, {"url": "https://github.com/iputils/iputils/releases/tag/20250602", "name": "https://github.com/iputils/iputils/releases/tag/20250602", "tags": [], "refsource": ""}, {"url": "https://github.com/iputils/iputils/security/advisories/GHSA-25fr-jw29-74f9", "name": "https://github.com/iputils/iputils/security/advisories/GHSA-25fr-jw29-74f9", "tags": [], "refsource": ""}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "ping in iputils before 20250602 allows a denial of service (application error in adaptive ping mode or incorrect data collection) via a crafted ICMP Echo Reply packet, because a zero timestamp can lead to large intermediate values that have an integer overflow when squared during statistics calculations. NOTE: this issue exists because of an incomplete fix for CVE-2025-47268 (that fix was only about timestamp calculations, and it did not account for a specific scenario where the original timestamp in the ICMP payload is zero)."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-190"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2025-48964", "ASSIGNER": "cve@mitre.org"}}, "impact": {}, "publishedDate": "2025-07-22T18:15Z", "configurations": {"nodes": [], "CVE_data_version": "4.0"}, "lastModifiedDate": "2025-07-23T15:15Z"}