NTP BUG 2940: Stack exhaustion in recursive traversal of restriction list

Last update: April 22, 2024 18:49 UTC (7e7bd5857)


Summary

Resolved 4.2.8p6 19 Jan 2016
References Bug 2940 CVE-2015-7978
Affects All ntp-4 releases up to, but not including 4.2.8p6,
and 4.3.0 up to, but not including 4.3.90.
Resolved in 4.2.8p6.
CVSS2 Score 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P

Description

An unauthenticated ntpdc reslist command can cause a segmentation fault in ntpd by exhausting the call stack.


Mitigation


Credit

This weakness was discovered by Stephen Gray of Cisco ASIG.


Timeline