ntpd needs updating.
Bug #1576993 reported by
Timothy Williams
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Raspbian |
Invalid
|
Undecided
|
Unassigned |
Bug Description
I have my raspberry pi fully updated. The current ntpd version is 4.2.6p5. I have read that version prior to Version 4.2.8 are vulnerable to remote code execution trigged by a buffer overflow. I currently have not tested the public exploit to see if it crashes the process due to invalid offset however i do think the package would be vulnerable. Sample code: http://
CVE References
To post a comment you must log in.
Do you have a link to a CVE or similar for this vulnerability?