CVE-2010-0293

Name of the Vulnerable Software and Affected Versions Chrony versions prior to 1.23.1

Description The issue concerns the client logging functionality in chronyd, which does not limit the memory used for storing client information. This allows remote attackers to cause a denial of service by consuming memory via spoofed NTP or cmdmon packets.

Recommendations For versions prior to 1.23.1, update to version 1.23.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the chronyd service to minimize the risk of exploitation.