[ntp:security] Potential issue with patch for ctl_putdata overflow

Florian Weimer fweimer at redhat.com
Fri Dec 19 10:54:59 UTC 2014


this patch:


seems to introduce a packet amplifier (multiple response packets to a 
single query packet).  As a result, it might protect the host running 
ntpd, but it endangers the rest of the Internet.  Could you please 
provide a better fix?

Florian Weimer / Red Hat Product Security

More information about the security mailing list