Back to search
CVE-2015-7691
Published: Aug 7, 2017
Modified: Aug 6, 2024
PUBLISHED
Description
The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted packets containing particular autokey operations. NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://bugzilla.redhat.com/show_bug.cgi?id=1274254
x_refsource_CONFIRM
77274
vdb-entry
x_refsource_BID
http://support.ntp.org/bin/view/Main/NtpBug2899
x_refsource_CONFIRM
RHSA-2016:2583
vendor-advisory
x_refsource_REDHAT
1033951
vdb-entry
x_refsource_SECTRACK
RHSA-2016:0780
vendor-advisory
x_refsource_REDHAT
DSA-3388
vendor-advisory
x_refsource_DEBIAN
GLSA-201607-15
vendor-advisory
x_refsource_GENTOO
https://security.netapp.com/advisory/ntap-20171004-0001/
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now