High severityOSV Advisory· Published Dec 18, 2025· Updated Dec 19, 2025
CVE-2025-68388
CVE-2025-68388
Description
Allocation of resources without limits or throttling (CWE-770) allows an unauthenticated remote attacker to cause excessive allocation (CAPEC-130) of memory and CPU via the integration of malicious IPv4 fragments, leading to a degradation in Packetbeat.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/elastic/beatsGo | >= 8.6.0, < 8.19.9 | 8.19.9 |
github.com/elastic/beatsGo | >= 9.0.0, < 9.1.9 | 9.1.9 |
github.com/elastic/beatsGo | >= 9.2.0, < 9.2.3 | 9.2.3 |
github.com/elastic/beats/v7Go | < 7.0.0-alpha2.0.20251209162832-28cfc80d2f4e | 7.0.0-alpha2.0.20251209162832-28cfc80d2f4e |
Affected products
82- osv-coords81 versionspkg:apk/chainguard/agentbeatpkg:apk/chainguard/agentbeat-fipspkg:apk/chainguard/apm-server-8.19pkg:apk/chainguard/apm-server-9.2pkg:apk/chainguard/apm-server-9.2-compatpkg:apk/chainguard/apm-server-fips-8.19pkg:apk/chainguard/apm-server-fips-9.2pkg:apk/chainguard/apm-server-fips-9.2-compatpkg:apk/chainguard/auditbeat-8.19pkg:apk/chainguard/auditbeat-8.19-oci-entrypointpkg:apk/chainguard/auditbeat-9.1pkg:apk/chainguard/auditbeat-9.1-oci-entrypointpkg:apk/chainguard/auditbeat-9.2pkg:apk/chainguard/auditbeat-9.2-oci-entrypointpkg:apk/chainguard/auditbeat-9.3pkg:apk/chainguard/auditbeat-9.4pkg:apk/chainguard/auditbeat-fips-8.19pkg:apk/chainguard/auditbeat-fips-9.1pkg:apk/chainguard/auditbeat-fips-9.2pkg:apk/chainguard/auditbeat-fips-9.3pkg:apk/chainguard/auditbeat-fips-9.4pkg:apk/chainguard/beats-8.19pkg:apk/chainguard/beats-9.1pkg:apk/chainguard/beats-9.2pkg:apk/chainguard/beats-fips-8.19pkg:apk/chainguard/beats-fips-9.1pkg:apk/chainguard/beats-fips-9.2pkg:apk/chainguard/cloudbeat-8.19pkg:apk/chainguard/cloudbeat-9.2pkg:apk/chainguard/cloudbeat-9.3pkg:apk/chainguard/cloudbeat-fips-8.19pkg:apk/chainguard/cloudbeat-fips-9.2pkg:apk/chainguard/cloudbeat-fips-9.3pkg:apk/chainguard/elastic-agentpkg:apk/chainguard/elastic-agent-8.19pkg:apk/chainguard/elastic-agent-fips-8.19pkg:apk/chainguard/filebeat-8.19pkg:apk/chainguard/filebeat-8.19-oci-entrypointpkg:apk/chainguard/filebeat-9.1pkg:apk/chainguard/filebeat-9.1-oci-entrypointpkg:apk/chainguard/filebeat-9.2pkg:apk/chainguard/filebeat-9.2-oci-entrypointpkg:apk/chainguard/filebeat-9.3pkg:apk/chainguard/filebeat-9.4pkg:apk/chainguard/filebeat-fips-8.19pkg:apk/chainguard/filebeat-fips-9.1pkg:apk/chainguard/filebeat-fips-9.2pkg:apk/chainguard/filebeat-fips-9.3pkg:apk/chainguard/filebeat-fips-9.4pkg:apk/chainguard/heartbeat-8.19pkg:apk/chainguard/heartbeat-8.19-oci-entrypointpkg:apk/chainguard/heartbeat-9.1pkg:apk/chainguard/heartbeat-9.1-oci-entrypointpkg:apk/chainguard/heartbeat-9.2pkg:apk/chainguard/heartbeat-9.2-oci-entrypointpkg:apk/chainguard/heartbeat-9.3pkg:apk/chainguard/heartbeat-9.4pkg:apk/chainguard/heartbeat-fips-8.19pkg:apk/chainguard/heartbeat-fips-8.19-oci-entrypointpkg:apk/chainguard/heartbeat-fips-9.1pkg:apk/chainguard/heartbeat-fips-9.1-oci-entrypointpkg:apk/chainguard/heartbeat-fips-9.2pkg:apk/chainguard/heartbeat-fips-9.2-oci-entrypointpkg:apk/chainguard/heartbeat-fips-9.3pkg:apk/chainguard/heartbeat-fips-9.4pkg:apk/chainguard/metricbeat-8.19pkg:apk/chainguard/metricbeat-8.19-oci-entrypointpkg:apk/chainguard/metricbeat-9.1pkg:apk/chainguard/metricbeat-9.1-oci-entrypointpkg:apk/chainguard/metricbeat-9.2pkg:apk/chainguard/metricbeat-9.2-oci-entrypointpkg:apk/chainguard/metricbeat-9.3pkg:apk/chainguard/metricbeat-9.4pkg:apk/chainguard/metricbeat-fips-8.19pkg:apk/chainguard/metricbeat-fips-9.1pkg:apk/chainguard/metricbeat-fips-9.2pkg:apk/chainguard/metricbeat-fips-9.3pkg:apk/chainguard/metricbeat-fips-9.4pkg:golang/github.com/elastic/beatspkg:golang/github.com/elastic/beats/v7pkg:rpm/opensuse/govulncheck-vulndb&distro=openSUSE%20Leap%2015.6
< 0+ 80 more
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 8.19.11-r0
- (no CPE)range: < 9.2.3-r1
- (no CPE)range: < 9.2.3-r1
- (no CPE)range: < 8.19.11-r0
- (no CPE)range: < 9.2.3-r1
- (no CPE)range: < 9.2.3-r1
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 8.19.12-r0
- (no CPE)range: < 9.2.6-r0
- (no CPE)range: < 0
- (no CPE)range: < 8.19.12-r0
- (no CPE)range: < 9.2.6-r0
- (no CPE)range: < 0
- (no CPE)range: < 9.2.3-r0
- (no CPE)range: < 8.19.9-r1
- (no CPE)range: < 8.19.9-r1
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: >= 8.6.0, < 8.19.9
- (no CPE)range: < 7.0.0-alpha2.0.20251209162832-28cfc80d2f4e
- (no CPE)range: < 0.0.20260123T022811-150000.1.140.1
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.