CVE-2012-4502

Published Nov 5, 2013

Last updated a year ago

Overview

Description: Multiple integer overflows in pktlength.c in Chrony before 1.29 allow remote attackers to cause a denial of service (crash) via a crafted (1) REQ_SUBNETS_ACCESSED or (2) REQ_CLIENT_ACCESSES command request to the PKL_CommandLength function or crafted (3) RPY_SUBNETS_ACCESSED, (4) RPY_CLIENT_ACCESSES, (5) RPY_CLIENT_ACCESSES_BY_INDEX, or (6) RPY_MANUAL_LIST command reply to the PKL_ReplyLength function, which triggers an out-of-bounds read or buffer overflow. NOTE: versions 1.27 and 1.28 do not require authentication to exploit.
Source: secalert@redhat.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: CWE-189

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7E236713-16ED-4ED1-9210-84C3F8F9E03F",
            "versionEndIncluding": "1.28"
          },
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D9F6D403-6DA1-4A95-B498-97D9775DAF31"
          },
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0EDD31BF-50F3-4669-8AD4-C5310C2CAAB3"
          },
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:1.18:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BE7B1A16-5E42-4571-BD0A-306E452F88C5"
          },
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:1.19:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3876201F-F20D-42DA-912A-17B6108C05A6"
          },
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:1.19.99.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3E0A3321-1CC7-47C1-A7F1-1FFC0CBA892A"
          },
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:1.19.99.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "203D6F3C-367E-4D39-8081-499A4847DB40"
          },
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:1.19.99.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F94EADFC-7FAC-47B5-8024-1F1D81F57E02"
          },
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:1.20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FF708CE0-F27C-474D-AB0C-296DCB53F416"
          },
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:1.21:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D4B0E62E-A525-4E0C-A5DF-512D79D7A68A"
          },
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:1.21:pre1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "14E0645D-717C-420F-BA1C-8B8C86CA7E28"
          },
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:1.23:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C3404172-1C34-46A4-B94A-3EF852C0C1E3"
          },
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:1.23:pre1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A5EF5C83-67EE-4E29-9B67-4B2551AA1DD6"
          },
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:1.23.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0C0EFE21-9119-4A5A-9627-4AF9A4C1A3A3"
          },
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:1.24:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4AD3192E-2D26-4D2C-BF0F-4AB2A3670725"
          },
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:1.24:pre1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BD2A78C2-11AE-4DBB-935C-73AB7F9DDB4E"
          },
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:1.25:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "628AA82E-CED1-439A-BCA2-051D6B6F3F10"
          },
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:1.25:pre1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C9057824-14B1-4F47-A47B-785DD4535E07"
          },
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:1.25:pre2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9D1467D4-2C22-4DA7-869D-7DC8735A5473"
          },
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:1.26:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EFE3E748-3834-463F-8C67-DAC51C2BF761"
          },
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:1.26:pre1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DD7D828F-0E16-49F5-BC07-BC5C7F56A497"
          },
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:1.27:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3A68D07C-EA41-4CF0-B0C5-4E3358F0AB68"
          },
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:1.27:pre1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "25048F2C-AD32-4776-975B-69C5757C79D8"
          },
          {
            "criteria": "cpe:2.3:a:tuxfamily:chrony:1.28:pre1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "30481FF5-B26F-4034-8C34-CE935B9C257D"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References