Описание
The ctl_getitem method in ntpd in ntp-4.2.8p6 before 4.2.8p11 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mode 6 packet with a ntpd instance from 4.2.8p6 through 4.2.8p10.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | released | 1:4.2.8p10+dfsg-5ubuntu3.3 |
| bionic | released | 1:4.2.8p10+dfsg-5ubuntu7.1 |
| devel | released | 1:4.2.8p11+dfsg-1ubuntu1 |
| esm-apps/bionic | released | 1:4.2.8p10+dfsg-5ubuntu7.1 |
| esm-infra-legacy/trusty | not-affected | 1:4.2.6.p5+dfsg-3ubuntu2.14.04.12 |
| esm-infra/xenial | not-affected | 1:4.2.8p4+dfsg-3ubuntu5.8 |
| precise/esm | not-affected | |
| trusty | not-affected | 1:4.2.6.p5+dfsg-3ubuntu2.14.04.12 |
| trusty/esm | not-affected | 1:4.2.6.p5+dfsg-3ubuntu2.14.04.12 |
| upstream | released | 4.2.8p11 |
Показывать по
EPSS
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
The ctl_getitem method in ntpd in ntp-4.2.8p6 before 4.2.8p11 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mode 6 packet with a ntpd instance from 4.2.8p6 through 4.2.8p10.
The ctl_getitem method in ntpd in ntp-4.2.8p6 before 4.2.8p11 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mode 6 packet with a ntpd instance from 4.2.8p6 through 4.2.8p10.
The ctl_getitem method in ntpd in ntp-4.2.8p6 before 4.2.8p11 allows r ...
The ctl_getitem method in ntpd in ntp-4.2.8p6 before 4.2.8p11 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mode 6 packet with a ntpd instance from 4.2.8p6 through 4.2.8p10.
Уязвимость метода ctl_getitem программы-демона ntpd реализации протокола синхронизации времени NTP, связанная с чтением за допустимыми границами буфера данных, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
5 Medium
CVSS2
7.5 High
CVSS3