Wind River Support Network

HomeDefectsLIN9-3624
Fixed

LIN9-3624 : CLONE - Security Advisory - ntp - CVE-2017-6460

Created: Mar 23, 2017    Updated: May 29, 2018
Resolved Date: Dec 21, 2017
Found In Version: 9.0.0.4
Fix Version: 9.0.0.6
Severity: Standard
Applicable for: Wind River Linux 9
Component/s: Userspace

Description

Stack-based buffer overflow in the reslist function in ntpq in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote servers have unspecified impact via a long flagstr variable in a restriction list response.


https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-6460

CVEs


Live chat
Online