This issue did not affect the versions of ntp as shipped with Red Hat Enterprise Linux 5, 6 and 7 as they did not include support for mrulist.
CVSS v2 metrics
NOTE: The following CVSS v2 metrics and score provided are preliminary and subject to review.
CVSS v3 metrics
NOTE: The following CVSS v3 metrics and score provided are preliminary and subject to review.
|CVSS3 Base Score||5.3|
|CVSS3 Base Metrics||CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H|
Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).
Affected Packages State
|Red Hat Enterprise Linux 7||ntp||Not affected|
|Red Hat Enterprise Linux 6||ntp||Not affected|
|Red Hat Enterprise Linux 5||ntp||Not affected|
CVE description copyright © 2017, The MITRE Corporation