[ntp:security] [Bug 3119] Trap crash

bugzilla-daemon at ntp.org bugzilla-daemon at ntp.org
Mon Nov 14 03:17:42 UTC 2016


--- Comment #7 from Harlan Stenn <stenn at ntp.org> 2016-11-14 03:17:42 UTC ---

I'm planning to go with:

 4.2 - CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H

because traps are not set up by default.  Enabling traps requires root access
(AC:H) and user interaction (UI:R) in order to create the necessary conditions
for this bug.

Bug 3118 is a separate issue here.

I'm happy to discuss this if you disagree.

Configure bugmail: http://bugs.ntp.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.

More information about the security mailing list