ntpd in ntp 4.2.8 prior to 4.2.8p15 and 4.3.x prior to 4.3.101 allows remote malicious users to cause a denial of service (memory consumption) by sending packets, because memory is not freed in situations where a CMAC key is used and associated with a CMAC algorithm in the ntp.keys file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ntp ntp 4.2.8 |
||
ntp ntp |
||
opensuse leap 15.1 |
||
opensuse leap 15.2 |
||
netapp cloud backup - |
||
netapp steelstore cloud integrated storage - |
||
netapp 8300_firmware - |
||
netapp 8700_firmware - |
||
netapp a400_firmware - |
||
netapp h410c_firmware - |
||
netapp h300s_firmware - |
||
netapp h500s_firmware - |
||
netapp h700s_firmware - |
||
netapp h300e_firmware - |
||
netapp h500e_firmware - |
||
netapp h700e_firmware - |
||
netapp h410s_firmware - |
||
oracle zfs storage appliance kit 8.8 |