CVE-2019-6444

Опубликовано: 16 янв. 2019

Источник: ubuntu

Приоритет: medium

CVSS2: 6.4

CVSS3: 9.1

Описание

An issue was discovered in NTPsec before 1.1.3. process_control() in ntp_control.c has a stack-based buffer over-read because attacker-controlled data is dereferenced by ntohl() in ntpd.

Релиз	Статус	Примечание
bionic	released	1.1.0+dfsg1-1ubuntu0.2
cosmic	released	1.1.1+dfsg1-2ubuntu0.1
devel	not-affected	1.1.3+dfsg1-1
esm-apps/bionic	released	1.1.0+dfsg1-1ubuntu0.2
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	1.1.3+dfsg1-1
xenial	DNE

Показывать по

Ссылки на источники

6.4 Medium

CVSS2

9.1 Critical

CVSS3

Связанные уязвимости

CVE-2019-6444

CVSS3: 9.1

nvd

около 7 лет назад

An issue was discovered in NTPsec before 1.1.3. process_control() in ntp_control.c has a stack-based buffer over-read because attacker-controlled data is dereferenced by ntohl() in ntpd.

CVE-2019-6444

CVSS3: 9.1

debian

около 7 лет назад

An issue was discovered in NTPsec before 1.1.3. process_control() in n ...

GHSA-ggw9-jvx5-hggr

CVSS3: 9.1

github

больше 3 лет назад

An issue was discovered in NTPsec before 1.1.3. process_control() in ntp_control.c has a stack-based buffer over-read because attacker-controlled data is dereferenced by ntohl() in ntpd.

openSUSE-SU-2019:0082-1

suse-cvrf

почти 7 лет назад

Security update for ntpsec

6.4 Medium

CVSS2

9.1 Critical

CVSS3

CVE-2019-6444

Описание

Пакет ntpsec

Ссылки на источники

Связанные уязвимости