CVE-2025-51005

Name

CVE-2025-51005

Description

A heap-buffer-overflow vulnerability exists in the tcpliveplay utility of the tcpreplay-4.5.1. When a crafted pcap file is processed, the program incorrectly handles memory in the checksum calculation logic at do_checksum_math_liveplay in tcpliveplay.c, leading to a possible denial of service.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
cve@mitre.org	https://github.com/appneta/tcpreplay/issues/925
cve@mitre.org	https://github.com/sy460129/CVE-2025-51005

CPE URI	Source package	Min version	Max version
	n/a	== n/a	== n/a
`cpe:2.3:a:broadcom:tcpreplay:4.5.1:::::::*`	tcpreplay	== None	== 4.5.1

Source package	Branch	Version	Maintainer	Status
tcpreplay	edge-community	4.5.1-r0	Celeste <cielesti@protonmail.com>	possibly vulnerable
tcpreplay	3.22-community	4.5.1-r0	Celeste <cielesti@protonmail.com>	possibly vulnerable

References

Match rules

Vulnerable and fixed packages