Oval Definition:	oval:org.mitre.oval:def:22874
Revision Date: 2014-05-26 Version: 20 Title: ELSA-2009:1039: ntp security update (Important) Description: Stack-based buffer overflow in the crypto_recv function in ntp_crypto.c in ntpd in NTP before 4.2.4p7 and 4.2.5 before 4.2.5p74, when OpenSSL and autokey are enabled, allows remote attackers to execute arbitrary code via a crafted packet containing an extension field. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2009-0159 CVE-2009-1252 ELSA-2009:1039-01 Platform(s): Oracle Linux 5 Product(s): ntp Definition Synopsis Oracle Linux 5.x AND ntp is earlier than 0:4.2.2p1-9.el5_3.2
BACK