Severity Medium
Remote Yes
Type Denial of service
ctl_getitem() is used by ntpd to process incoming mode 6 packets. A malicious mode 6 packet can be sent to an ntpd instance, and if the ntpd instance is from 4.2.8p6 thru 4.2.8p10, that will cause ctl_getitem() to read past the end of its buffer.
Group Package Affected Fixed Severity Status Ticket
AVG-647 ntp 4.2.8.p10-1 4.2.8.p11-1 High Fixed
Date Advisory Group Package Severity Description
16 Mar 2018 ASA-201803-11 AVG-647 ntp High multiple issues