Описание
The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted packets containing particular autokey operations. NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1:4.2.6.p5+dfsg-3ubuntu8.1 |
| esm-infra-legacy/trusty | released | 1:4.2.6.p5+dfsg-3ubuntu2.14.04.5 |
| precise | released | 1:4.2.6.p3+dfsg-1ubuntu3.6 |
| trusty | released | 1:4.2.6.p5+dfsg-3ubuntu2.14.04.5 |
| trusty/esm | released | 1:4.2.6.p5+dfsg-3ubuntu2.14.04.5 |
| upstream | needs-triage | |
| vivid | released | 1:4.2.6.p5+dfsg-3ubuntu6.2 |
| vivid/stable-phone-overlay | released | 1:4.2.6.p5+dfsg-3ubuntu6.2 |
| vivid/ubuntu-core | DNE | |
| wily | released | 1:4.2.6.p5+dfsg-3ubuntu8.1 |
Показывать по
EPSS
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted packets containing particular autokey operations. NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.
The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted packets containing particular autokey operations. NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.
The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3. ...
The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted packets containing particular autokey operations. NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.
ELSA-2016-0780: ntp security and bug fix update (MODERATE)
EPSS
5 Medium
CVSS2
7.5 High
CVSS3