Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2021-3571

Опубликовано: 09 июл. 2021
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 5.5
CVSS3: 7.1

Описание

A flaw was found in the ptp4l program of the linuxptp package. When ptp4l is operating on a little-endian architecture as a PTP transparent clock, a remote attacker could send a crafted one-step sync message to cause an information leak or crash. The highest threat from this vulnerability is to data confidentiality and system availability. This flaw affects linuxptp versions before 3.1.1 and before 2.0.1.

РелизСтатусПримечание
bionic

not-affected

code not present
devel

not-affected

3.1-2.1
esm-apps/bionic

not-affected

code not present
esm-apps/focal

not-affected

code not present
esm-apps/jammy

not-affected

3.1-2.1
esm-apps/xenial

not-affected

code not present
esm-infra-legacy/trusty

DNE

focal

not-affected

code not present
groovy

ignored

end of life
hirsute

ignored

end of life

Показывать по

Ссылки на источники

EPSS

Процентиль: 61%
0.0041
Низкий

5.5 Medium

CVSS2

7.1 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2021-3571

CVSS3: 7.1
redhat
почти 4 года назад

A flaw was found in the ptp4l program of the linuxptp package. When ptp4l is operating on a little-endian architecture as a PTP transparent clock, a remote attacker could send a crafted one-step sync message to cause an information leak or crash. The highest threat from this vulnerability is to data confidentiality and system availability. This flaw affects linuxptp versions before 3.1.1 and before 2.0.1.

nvd логотип

CVE-2021-3571

CVSS3: 7.1
nvd
почти 4 года назад

A flaw was found in the ptp4l program of the linuxptp package. When ptp4l is operating on a little-endian architecture as a PTP transparent clock, a remote attacker could send a crafted one-step sync message to cause an information leak or crash. The highest threat from this vulnerability is to data confidentiality and system availability. This flaw affects linuxptp versions before 3.1.1 and before 2.0.1.

debian логотип

CVE-2021-3571

CVSS3: 7.1
debian
почти 4 года назад

A flaw was found in the ptp4l program of the linuxptp package. When pt ...

rocky логотип

RLSA-2021:4321

rocky
больше 3 лет назад

Moderate: linuxptp security, bug fix, and enhancement update

github логотип

GHSA-3v9q-m45q-4cr7

CVSS3: 7.1
github
около 3 лет назад

A flaw was found in the ptp4l program of the linuxptp package. When ptp4l is operating on a little-endian architecture as a PTP transparent clock, a remote attacker could send a crafted one-step sync message to cause an information leak or crash. The highest threat from this vulnerability is to data confidentiality and system availability. This flaw affects linuxptp versions before 3.1.1 and before 2.0.1.

EPSS

Процентиль: 61%
0.0041
Низкий

5.5 Medium

CVSS2

7.1 High

CVSS3