CVE-2018-7183: ntp: decodearr() can write beyond its buffer limit

Severity: Critical

CVSS Score: 9.8

Buffer overflow in the decodearr function in ntpq in ntp 4.2.8p6 through 4.2.8p10 allows remote attackers to execute arbitrary code by leveraging an ntpq query and sending a response with a crafted array.