Your submission was sent successfully! Close

You have successfully unsubscribed! Close

CVE-2010-0294

Published: 8 February 2010

chronyd in Chrony before 1.23.1, and possibly 1.24-pre1, generates a syslog message for each unauthorized cmdmon packet, which allows remote attackers to cause a denial of service (disk consumption) via a large number of invalid packets.

Priority

Low

Status

Package Release Status
chrony
Launchpad, Ubuntu, Debian
dapper Ignored
(reached end-of-life)
hardy
Released (1.21z-5+etch1build0.8.04.1)
intrepid Needed
(reached end-of-life)
jaunty
Released (1.23-6+lenny1build0.9.04.1)
karmic
Released (1.23-6+lenny1build0.9.10.1)
lucid
Released (1.23-7)
upstream
Released (1.23-7)