NTP 'ntpd' Autokey Stack Overflow Vulnerability

Summary
This host is running NTP Daemon and is prone to stack overflow vulnerability.
Impact
Successful exploitation will let the attacker craft a specially malicious NTP request packet which can crash ntp daemon or can cause arbitrary code execution in the affected machine with local user's privilege. Impact level: Application.
Solution
Apply the security update according to the OS version. https://admin.fedoraproject.org/updates/search/ntp
Insight
This flaw is due to configuration error in ntp daemon's NTPv4 authentication code. If ntp daemon is configured to use Public Key Cryptography for NTP Packet authentication which lets the attacker send crafted NTP requests.
Affected
NTP version prior to 4.2.4p7 NTP version 4.2.5 to 4.2.5p73
References