CVE-2026-25061

Name of the Vulnerable Software and Affected Versions tcpflow versions up to and including 1.61

Description tcpflow is a TCP/IP packet demultiplexer. The software parses 802.11 management frame elements and performs a length check on an incorrect field when handling the TIM (Timing Advertisement) element. A specially crafted frame with a large TIM length can cause a 1-byte out-of-bounds write past tim.bitmap[251]. The overflow is small, and a denial-of-service (DoS) attack is the likely impact, although code execution is possible. The affected structure is allocated on the stack within the handle beacon() function and related handlers.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.