CVE-2021-3571

CVE-2021-3571 affects linuxptp's ptp4l; when running on little-endian architectures as a PTP transparent clock, a crafted one-step sync can cause information leak or crash. Affected versions are before 3.1.1 and before 2.0.1; remediation in public advisories is to upgrade to 3.1.1 or newer. The c...

CVE-2021-3570

The CVE-2021-3570 entry concerns linuxptp’s ptp4l, where a missing length check on forwarded PTP messages allows a remote attacker to trigger information disclosure, crash, or potentially remote code execution. Affected are linuxptp versions prior to 3.1.1, 2.0.1, 1.9.3, 1.8.1, 1.7.1, 1.6.1, and ...