Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-0294HistoryOct 03, 2022 - 4:21 p.m.
CVE-2010-0294
2022-10-0316:21:13
Debian Security Bug Tracker
security-tracker.debian.org
11
chronyd
denial of service
unauthorized cmdmon packet
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.017 Low
EPSS
Percentile
87.8%
chronyd in Chrony before 1.23.1, and possibly 1.24-pre1, generates a syslog message for each unauthorized cmdmon packet, which allows remote attackers to cause a denial of service (disk consumption) via a large number of invalid packets.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | chrony | < 1.23-7 | chrony_1.23-7_all.deb |
| Debian | 11 | all | chrony | < 1.23-7 | chrony_1.23-7_all.deb |
| Debian | 999 | all | chrony | < 1.23-7 | chrony_1.23-7_all.deb |
| Debian | 13 | all | chrony | < 1.23-7 | chrony_1.23-7_all.deb |
Related
ubuntucve
ubuntucve
CVE-2010-0294
2010-02-08 00:00:00
prion
prion
Code injection
2010-02-08 20:30:00
cvelist
cvelist
CVE-2010-0294
2022-10-03 16:21:13
cve
cve
CVE-2010-0294
2022-10-03 16:21:13
nvd
nvd
CVE-2010-0294
2010-02-08 20:30:01
nessus
nessus
Fedora 11 : chrony-1.23-6.20081106gitbe42b4.fc11 (2010-1536)
2010-07-01 00:00:00
Fedora 12 : chrony-1.23-8.20081106gitbe42b4.fc12 (2010-1539)
2010-07-01 00:00:00
Debian DSA-1992-1 : chrony - several vulnerabilities
2010-02-24 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 6 package chrony version 1.24-alt1
2010-02-08 00:00:00
Security fix for the ALT Linux 8 package chrony version 1.24-alt1
2010-02-08 00:00:00
Security fix for the ALT Linux 5 package chrony version 1.24-alt1
2010-02-08 00:00:00
openvas
openvas
Fedora Update for chrony FEDORA-2010-1536
2010-03-02 00:00:00
Fedora Update for chrony FEDORA-2010-1539
2010-03-02 00:00:00
Fedora Update for chrony FEDORA-2010-1539
2010-03-02 00:00:00
securityvulns
securityvulns
chrony multiple security vulnerabilities
2010-02-05 00:00:00
[SECURITY] [DSA 1992-1] New chrony packages fix denial of service
2010-02-05 00:00:00
fedora
fedora
[SECURITY] Fedora 12 Update: chrony-1.23-8.20081106gitbe42b4.fc12
2010-02-06 00:07:09
[SECURITY] Fedora 11 Update: chrony-1.23-6.20081106gitbe42b4.fc11
2010-02-06 00:05:24
debian
debian
[SECURITY] [DSA 1992-1] New chrony packages fix denial of service
2010-02-04 17:38:45
osv
osv
chrony - denial of service
2010-02-04 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.017 Low
EPSS
Percentile
87.8%
Related for DEBIANCVE:CVE-2010-0294