An unchecked read in NTP server in github.com/cloudflare/cfnts prior to commit 783490b https://github.com/cloudflare/cfnts/commit/783490b913f05e508a492cd7b02e3c4ec2297b71 enabled a remote attacker to trigger a panic by sending an NTSAuthenticator packet with extension length longer than the packet contents.
References
Link | Resource |
---|---|
https://github.com/cloudflare/cfnts/security/advisories/GHSA-pwx6-gw47-96cp | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: cloudflare
Published: 2023-06-14T11:08:08.969Z
Updated: 2023-06-14T11:08:28.361Z
Reserved: 2023-06-01T13:38:17.881Z
Link: CVE-2023-3036
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-06-14T12:15:09.647
Modified: 2023-06-27T18:40:38.283
Link: CVE-2023-3036
JSON object: View
Redhat Information
No data.