| Revision Date: | 2023-06-22 | Version: | 1 |
| Title: | CVE-2023-26554 |
| Description: |
mstolfp in libntp/mstolfp.c in NTP 4.2.8p15 has an out-of-bounds write when adding a '\0' character. An adversary may be able to attack a client ntpq process, but cannot attack ntpd.
|
| Family: | unix | Class: | vulnerability |
| Status: | | Reference(s): | Mitre CVE-2023-26554
SUSE CVE-2023-26554
SUSE-SU-2023:2142-1
SUSE-SU-2023:2171-1
|
| Platform(s): | SUSE Linux Enterprise High Performance Computing 15 SP5
SUSE Linux Enterprise Module for Legacy 15 SP5
SUSE Linux Enterprise Server 15 SP5
SUSE Linux Enterprise Server for SAP Applications 15 SP5
| Product(s): | |
| Definition Synopsis |
| Release Information SUSE Linux Enterprise High Performance Computing 15 SP5 is installed
OR SUSE Linux Enterprise Module for Legacy 15 SP5 is installed
OR SUSE Linux Enterprise Server 15 SP5 is installed
OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
AND ntp-4.2.8p15-150000.4.22.1 is installed
|