Michael Macnair

**Name of the Vulnerable Software and Affected Versions** ntpd versions 4.2.8p6 through 4.2.8p10 **Description** The issue is caused by a buffer overflow in the `decodearr` function in `ntpq`, which is part of the NTP protocol implementation. This allows a remote attacker to execute arbitrary code by sending a response with a crafted array to an `ntpq` query. Additionally, there is a risk of Sybil attacks from authenticated peers, where an attacker could create multiple ephemeral associations to win the clock selection of `ntpd` and modify a victim's clock. **Recommendations** For versions 4.2.8p6 through 4.2.8p10, consider disabling the `decodearr` function in `ntpq` as a temporary workaround until a patch is available. Restrict access to `ntpd` to minimize the risk of exploitation. Avoid using `ntpq` queries that could be used to send crafted arrays until the issue is resolved.