CVE-2015-5195
CVE-2015-5195
ntp_openssl.m4 in ntpd in NTP before 4.2.7p112 allows remote attackers to cause a denial of service (segmentation fault) via a crafted statistics or filegen configuration command that is not enabled during compilation.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.fedoraproject.org/pipermail/package-announce/2015-November/170926.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2015-October/169167.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2015-September/166992.htmlhttp://rhn.redhat.com/errata/RHSA-2016-0780.htmlhttp://rhn.redhat.com/errata/RHSA-2016-2583.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=1254544https://github.com/ntp-project/ntp/commit/52e977d79a0c4ace997e5c74af429844da2f27behttps://www-01.ibm.com/support/docview.wss?uid=isg3T1024157https://www-01.ibm.com/support/docview.wss?uid=swg21985122https://www-01.ibm.com/support/docview.wss?uid=swg21986956https://www-01.ibm.com/support/docview.wss?uid=swg21988706https://www-01.ibm.com/support/docview.wss?uid=swg21989542