CVE-2015-7853: ntp: reference clock memory corruption vulnerability

Severity: Critical

CVSS Score: 9.8

The datalen parameter in the refclock driver in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a negative input value.