[ntp:security] [Bug 2918] TALOS-CAN-0062: A potential path traversal vulnerability exists in the config file saving of ntpd on VMS. A specially crafted path could cause a path traversal potentially resulting in files being overwritten. saveconfig Directory Traversal Vulnerability

bugzilla-daemon at ntp.org bugzilla-daemon at ntp.org
Sat Oct 3 07:21:31 UTC 2015


https://bugs.ntp.org/show_bug.cgi?id=2918

Juergen Perlinger <perlinger at ntp.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|IN_PROGRESS                 |READY

--- Comment #3 from Juergen Perlinger <perlinger at ntp.org> 2015-10-03 07:21:31 UTC ---
The repo is in
 psp.ntp.org:~perlinger/ntp-stable-cisco2

Unix/Posix names must not contain '/' or '\'
Windows names must not contain ':', '/' or '\'
VMS names must not contain ':', '[' or ']'

-- 
Configure bugmail: https://bugs.ntp.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.


More information about the security mailing list