Lucene search
RedhatCVELIST:CVE-2012-4502HistoryNov 05, 2013 - 9:00 p.m.
CVE-2012-4502
2013-11-0521:00:00
redhat
www.cve.org
6
chrony
integer overflows
denial of service
Multiple integer overflows in pktlength.c in Chrony before 1.29 allow remote attackers to cause a denial of service (crash) via a crafted (1) REQ_SUBNETS_ACCESSED or (2) REQ_CLIENT_ACCESSES command request to the PKL_CommandLength function or crafted (3) RPY_SUBNETS_ACCESSED, (4) RPY_CLIENT_ACCESSES, (5) RPY_CLIENT_ACCESSES_BY_INDEX, or (6) RPY_MANUAL_LIST command reply to the PKL_ReplyLength function, which triggers an out-of-bounds read or buffer overflow. NOTE: versions 1.27 and 1.28 do not require authentication to exploit.
Related
cve
cve
CVE-2012-4502
2013-11-05 21:55:08
prion
prion
Integer overflow
2013-11-05 21:55:00
ubuntucve
ubuntucve
CVE-2012-4502
2013-11-05 00:00:00
nvd
nvd
CVE-2012-4502
2013-11-05 21:55:08
debiancve
debiancve
CVE-2012-4502
2013-11-05 21:55:08
gentoo
gentoo
Chrony: Multiple vulnerabilities
2014-02-28 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-2760-1)
2013-09-17 00:00:00
Fedora Update for chrony FEDORA-2013-14539
2013-08-16 00:00:00
Fedora Update for chrony FEDORA-2013-14539
2013-08-16 00:00:00
securityvulns
securityvulns
Chrony security vulnerabilities
2013-10-03 00:00:00
[SECURITY] [DSA 2760-1] chrony security update
2013-10-03 00:00:00
nessus
nessus
GLSA-201402-28 : Chrony: Multiple vulnerabilities
2014-03-02 00:00:00
Fedora 19 : chrony-1.29-1.fc19 (2013-14549)
2013-08-12 00:00:00
Fedora 18 : chrony-1.29-1.fc18 (2013-14539)
2013-08-15 00:00:00
debian
debian
[SECURITY] [DSA 2760-1] chrony security update
2013-09-18 14:39:20
fedora
fedora
[SECURITY] Fedora 18 Update: chrony-1.29-1.fc18
2013-08-15 02:51:45
[SECURITY] Fedora 19 Update: chrony-1.29-1.fc19
2013-08-11 18:32:58
[SECURITY] Fedora 19 Update: chrony-1.29.1-1.fc19
2014-02-20 00:47:04
osv
osv
chrony - several
2013-09-18 00:00:00
chrony-2.4.1-1.1 on GA media
2024-06-15 00:00:00