[ntp:security] [Bug 1331] DoS with mode 7 packets (CVE-2009-3563)

Dave Hart via the NTP Bugzilla bugzilla at ntp.org
Wed Oct 28 03:18:06 UTC 2009


http://bugs.ntp.org/1331



----------------------------------------------------------------------------
Additional Comments From hart at ntp.org (Dave Hart)
Submitted on 2009-10-28 03:18

(In reply to comment #19)
> If a mode 6 or mode 7 packet arrives
> from a multicast or broadcast address it should always be dropped even if the
> packet is valid.

Good idea.  Drop mode 6 and mode 7 packets addressed to a broadcast or multicast 
address (not from).  I would be very careful in testing all supported 
configurations before I'd attempt to drop mode 1-5 sent to *cast addresses.

-- 
Dave Hart <hart at ntp.org>



------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.


More information about the security mailing list