[ntp:security] [Bug 3414] ntpq: decodearr() can write beyond its 'buf' limits

bugzilla-daemon at ntp.org bugzilla-daemon at ntp.org
Mon Oct 23 08:07:05 UTC 2017


http://bugs.ntp.org/show_bug.cgi?id=3414

--- Comment #10 from Michael Macnair <michael.macnair at thales-esecurity.com> 2017-10-23 08:07:05 UTC ---
Great.

> I haven't requested a CVE for the overflow; please let me know if you will or
you'd prefer me to (and if me, via what CNA).

Has a CVE been assigned?

-- 
Configure bugmail: http://bugs.ntp.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.


More information about the security mailing list