Network Time Foundation:
NTP Bug 3009
> 7 causes array wraparound with
Date Resolved: Stable (4.2.8p7) 26 Apr 2016; Dev (4.3.92) 26 Apr 2016
Affects: All ntp-4 releases up to, but not including 4.2.8p7, and 4.3.0 up to, but not including 4.3.92
CVSS2: LOW 2.1
CVSS3: LOW 2.0
Summary: Using a crafted packet to create a peer association with
> 7 causes the
lookup to make an out-of-bounds reference.
Upgrade to 4.2.8p7, or later, from the
NTP Project Download Page
NTP Public Services Project Download Page
Properly monitor your
Credit: This weakness was discovered by Yihan Lian of the Cloud Security Team, Qihoo 360.
This topic: Main
Topic revision: r1 - 2016-04-27 - 03:14:11 -
Copyright &© 1999-2021 by the contributing authors. All material on this collaboration platform is the property of the contributing authors. Ideas, requests, problems regarding the site?