NTP Bug 2671

vallen is not validated in several places in ntp_crypto.c, leading to a potential info leak or possibly crashing ntpd.

  • References: Sec 2671 / CVE-2014-9297 / VU#852879
  • Affects: All NTP4 releases before 4.2.8p1 that are running autokey.
  • CVSS: (AV:N/AC:L/Au:N/C:P/I:P/A:P) Base Score: 7.5
  • Date Resolved: Stable (4.2.8p1) 04 Feb 2015
  • Summary: The vallen packet value is not validated in several code paths in ntp_crypto.c which can lead to information leakage or a possible crash of ntpd.
  • Mitigation - any of:
  • Credit: This vulnerability was discovered by Stephen Roettger of the Google Security Team, with additional cases found by Sebastian Krahmer of the SUSE Security Team and Harlan Stenn of Network Time Foundation.

This topic: Main > SecurityNotice > NtpBug2899 > NtpBug2671
Topic revision: r1 - 2015-10-23 - 09:03:11 - HarlanStenn
SSL security by CAcert
Get the CAcert Root Certificate
This site is powered by the TWiki collaboration platform
IPv6 Ready
Copyright & 1999-2020 by the contributing authors. All material on this collaboration platform is the property of the contributing authors. Ideas, requests, problems regarding the site? Send feedback