CVE-2014-9295 (retired)

Priority
Description
Multiple stack-based buffer overflows in ntpd in NTP before 4.2.8 allow
remote attackers to execute arbitrary code via a crafted packet, related to
(1) the crypto_recv function when the Autokey Authentication feature is
used, (2) the ctl_putdata function, and (3) the configure function.
Notes
 mdeslaur> configure() isn't in lucid
Assigned-to
mdeslaur
More Information

Updated: 2019-03-26 12:13:50 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)