NTP BUG 2899: Incomplete autokey data packet length checks
Last update: June 28, 2022 20:06 UTC (57417e17c)
Incorrect patch for 2671, in
crypto_xmit(). Missing length checks for autokey with GQ identity scheme.
The fix for CVE-2014-9750 was incomplete in that there were certain code paths where a packet with particular autokey operations that contained malicious data was not always being completely validated. Receipt of these packets can cause
ntpd to crash.
This weakness was discovered by Tenable Network Security.