Wind River Support Network

HomeDefectsLIN1023-67

Fixed

LIN1023-67 : Security Advisory - ntp - CVE-2023-26551

Created: Apr 27, 2023 Updated: Dec 30, 2023

Resolved Date: Dec 27, 2023

Found In Version: 10.23.30.1

Fix Version: 10.23.30.5

Severity: Standard

Applicable for: Wind River Linux LTS 23

Component/s: Userspace

Description

mstolfp in libntp/mstolfp.c in NTP 4.2.8p15 has an out-of-bounds write in the cp<cpdec while loop.

CREATE(Triage):(User=admin) CVE-2023-26551 (https://nvd.nist.gov/vuln/detail/CVE-2023-26551)

CVEs

CVE-2023-26551