Summary: If ntpd is configured to allow mrulist query requests from a server that sends a crafted malicious packet, ntpd will crash on receipt of that crafted malicious mrulist query packet.
Mitigation:
mrulist
query packets from trusted hosts.ntpd
instances, and auto-restart ntpd
(without -g
) if it stops running.Credit: This weakness was discovered by Magnus Stubman.