CVE-2012-4503

Chrony < 1.29 - Unauthorized Sensitive Information Exposure via RPY_SUBNETS_ACCESSED and RPY_CLIENT_ACCESSES Commands

Title source: llm
STIX 2.1

Description

cmdmon.c in Chrony before 1.29 allows remote attackers to obtain potentially sensitive information from stack memory via vectors related to (1) an invalid subnet in a RPY_SUBNETS_ACCESSED command to the handle_subnets_accessed function or (2) a RPY_CLIENT_ACCESSES command to the handle_client_accesses function when client logging is disabled, which causes uninitialized data to be included in a reply.

References (5)

Core 5
Core References
Vendor Advisory mailing-list x_refsource_mlist
http://permalink.gmane.org/gmane.comp.time.chrony.announce/15
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2013/dsa-2760
Patch mailing-list x_refsource_mlist
http://seclists.org/oss-sec/2013/q3/332
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=846392

Scores

EPSS 0.0308
EPSS Percentile 86.1%

Details

CWE
CWE-200
Status published
Products (17)
tuxfamily/chrony 1.0
tuxfamily/chrony 1.1
tuxfamily/chrony 1.18
tuxfamily/chrony 1.19
tuxfamily/chrony 1.19.99.1
tuxfamily/chrony 1.19.99.2
tuxfamily/chrony 1.19.99.3
tuxfamily/chrony 1.20
tuxfamily/chrony 1.21 (2 CPE variants)
tuxfamily/chrony 1.23 (2 CPE variants)
... and 7 more
Published Nov 05, 2013
Tracked Since Feb 18, 2026