QwikSec

Security Database

CVE

CWE

Training

CVE-2012-4502

Published: Nov 5, 2013

Modified: Sep 17, 2024

PUBLISHED

Description

Multiple integer overflows in pktlength.c in Chrony before 1.29 allow remote attackers to cause a denial of service (crash) via a crafted (1) REQ_SUBNETS_ACCESSED or (2) REQ_CLIENT_ACCESSES command request to the PKL_CommandLength function or crafted (3) RPY_SUBNETS_ACCESSED, (4) RPY_CLIENT_ACCESSES, (5) RPY_CLIENT_ACCESSES_BY_INDEX, or (6) RPY_MANUAL_LIST command reply to the PKL_ReplyLength function, which triggers an out-of-bounds read or buffer overflow. NOTE: versions 1.27 and 1.28 do not require authentication to exploit.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[chrony-announce] 20130808 chrony-1.29 released (security)

mailing-list

x_refsource_MLIST

vendor-advisory

x_refsource_DEBIAN

[oss-security] 20130809 [Not a CVE request, just notification] CVE-2012-4502, CVE-2012-4503 -- Two security flaws fixed in Chrony v1.29

mailing-list

x_refsource_MLIST

http://git.tuxfamily.org/chrony/chrony.git/?p=chrony/chrony.git%3Ba=commitdiff%3Bh=7712455d9aa33d0db0945effaa07e900b85987b1

x_refsource_CONFIRM

https://bugzilla.redhat.com/show_bug.cgi?id=846392

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.