Candidate: CVE-2009-1252
PublicDate: 2009-05-19 19:30:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1252
 https://ubuntu.com/security/notices/USN-777-1
Description:
 Stack-based buffer overflow in the crypto_recv function in ntp_crypto.c in
 ntpd in NTP before 4.2.4p7 and 4.2.5 before 4.2.5p74, when OpenSSL and
 autokey are enabled, allows remote attackers to execute arbitrary code via
 a crafted packet containing an extension field.
Ubuntu-Description: 
Notes: 
 jdstrand> from CERT: If autokey is enabled (the ntp.conf file contains the line           "crypto pw whatever" a remote attacker can send a carefully crafted             packet that can overflow a stack buffer and potentially allow for               malicious code to be executed with the privilege level of the ntpd              process.
Bugs: 
Priority: medium
Discovered-by: Chis Ries
Assigned-to: jdstrand
CVSS: 

Patches_ntp:
upstream_ntp: pending (4.2.4p7, 4.2.5p74)
dapper_ntp: released (1:4.2.0a+stable-8.1ubuntu6.2)
hardy_ntp: released (1:4.2.4p4+dfsg-3ubuntu2.2)
intrepid_ntp: released (1:4.2.4p4+dfsg-6ubuntu2.3)
jaunty_ntp: released (1:4.2.4p4+dfsg-7ubuntu5.1)
devel_ntp: released (1:4.2.4p6+dfsg-1ubuntu2)