Oval Definition:	oval:com.ubuntu.precise:def:20176451000
Revision Date: 2017-03-27 Version: 1 Title: CVE-2017-6451 on Ubuntu 12.04 LTS (precise) - medium. Description: The mx4200_send function in the legacy MX4200 refclock in NTP before 4.2.8p10 and 4.3.x before 4.3.94 does not properly handle the return value of the snprintf function, which allows local users to execute arbitrary code via unspecified vectors, which trigger an out-of-bounds memory write. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-6451 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND While related to the CVE in some way, the 'ntp' package in precise is not affected (note: 'code not compiled').
BACK