CVE-2025-49809

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-49809

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-49809.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2025-49809

Downstream

UBUNTU-CVE-2025-49809

Published

2025-07-04T13:15:25Z

Modified

2025-07-08T16:50:59.597280Z

Summary

[none]

Details

mtr through 0.95, in certain privileged contexts, mishandles execution of a program specified by the MTR_PACKET environment variable. NOTE: mtr on macOS may often have Sudo rules, as an indirect consequence of Homebrew not installing setuid binaries.

References

Affected packages

Debian:11 / mtr

Package

Name: mtr
Purl: pkg:deb/debian/mtr?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.94-1

0.94-1+deb11u1

0.94-2

0.95-1

0.95-1.1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / mtr

Package

Name: mtr
Purl: pkg:deb/debian/mtr?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.95-1

0.95-1.1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / mtr

Package

Name: mtr
Purl: pkg:deb/debian/mtr?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.95-1

0.95-1.1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Git / github.com/traviscross/mtr

Affected ranges

Type: GIT
Repo: https://github.com/traviscross/mtr
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

5226f105f087c29d3cfad9f28000e7536af91ac6

Affected versions

v0.*

v0.21

v0.22

v0.23

v0.24

v0.25

v0.26

v0.27

v0.28

v0.29

v0.30

v0.31

v0.32

v0.33

v0.34

v0.35

v0.36

v0.37

v0.38

v0.39

v0.40

v0.41

v0.42

v0.43

v0.44

v0.45

v0.46

v0.47

v0.48

v0.49

v0.50

v0.51

v0.52

v0.53

v0.54

v0.55

v0.56

v0.57

v0.58

v0.59

v0.60

v0.61

v0.62

v0.63

v0.64

v0.65

v0.66

v0.67

v0.68

v0.69

v0.70

v0.71

v0.72

v0.73

v0.74

v0.75

v0.76

v0.77

v0.78

v0.79

v0.80

v0.81

v0.82

v0.83

v0.84

v0.85

v0.86

v0.87

v0.89

v0.90

v0.91

v0.92

v0.93

v0.94

v0.95