Heap-based buffer overflow in chrony prior to 1.31.1 allows remote authenticated users to cause a denial of service (chronyd crash) or possibly execute arbitrary code by configuring the (1) NTP or (2) cmdmon access with a subnet size that is indivisible by four and an address with a nonzero bit in the subnet remainder.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tuxfamily chrony |
||
debian debian linux 7.0 |