[ntp:security] [Bug 2918] TALOS-CAN-0062: A potential path traversal vulnerability exists in the config file saving of ntpd on VMS. A specially crafted path could cause a path traversal potentially resulting in files being overwritten. saveconfig Directory Traversal Vulnerability

bugzilla-daemon at ntp.org bugzilla-daemon at ntp.org
Fri Oct 23 05:53:35 UTC 2015


http://bugs.ntp.org/show_bug.cgi?id=2918

Harlan Stenn <stenn at ntp.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
           Priority|P5                          |P3
             Status|STAGED                      |RESOLVED
              Group|Security                    |
                 CC|                            |bugs at ntp.org
          Component|Security Bugs               |ntpd
         Resolution|                            |FIXED
         AssignedTo|perlinger at ntp.org           |stenn at ntp.org

--- Comment #5 from Harlan Stenn <stenn at ntp.org> 2015-10-23 05:53:35 UTC ---
Fixed in 4.2.8p4 and 4.3.77

-- 
Configure bugmail: http://bugs.ntp.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.


More information about the security mailing list