[ntp:bugs] [Bug 3610] New: process_control() should bail earlier on short packets.

bugzilla-daemon at ntp.org bugzilla-daemon at ntp.org
Sat Aug 31 23:38:15 UTC 2019


https://bugs.ntp.org/show_bug.cgi?id=3610

             Bug #: 3610
           Summary: process_control() should bail earlier on short
                    packets.
           Product: ntp
           Version: 4.2.8
          Platform: All
        OS/Version: All
            Status: CONFIRMED
          Severity: normal
          Priority: P5
         Component: ntpd
        AssignedTo: stenn at ntp.org
        ReportedBy: stenn at ntp.org
                CC: bugs at ntp.org
    Classification: Unclassified


Philippe Antoine found this via oss-fuzz testing:

==1==WARNING: MemorySanitizer: use-of-uninitialized-value
    #0 0x56409e in process_control
/src/ntp-dev-4.3.99/ntpd/ntp_control.c:1205:7
    #1 0x5baa8e in receive /src/ntp-dev-4.3.99/ntpd/ntp_proto.c:690:3
    #2 0x504b63 in LLVMFuzzerTestOneInput
/src/ntp-dev-4.3.99/tests/fuzz/fuzz_ntpd_receive.c:92:5

-- 
Configure bugmail: https://bugs.ntp.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.


More information about the bugs-announce mailing list