[ntp:security] [Bug 1331] DoS with mode 7 packets (CVE-2009-3563)

Harlan Stenn stenn at ntp.org
Fri Oct 9 01:10:24 UTC 2009


There have been, as I recall, cases in the past where ntpdc has been
changed in a way that was not backward compatible.  When I asked about
this the feedback I got was "ntpdc is version-specific so it's OK to do
this".

I'm speaking in general - I looked at Dave's patch and since the patch I
saw didn't change anything in the code expec to not issue an error
response in some cases I still have no idea what you are going on about
Danny.

H


More information about the security mailing list