Gitlab Ntpsec vulnerabilities

CVE-2023-4012 [HIGH] CWE-372 Incomplete Internal State Distinction in ntpsec Incomplete Internal State Distinction in ntpsec ntpd will crash if the server is not NTS-enabled (no certificate) and it receives an NTS-enabled client request (mode 3). Affected products: ntpsec Affected versions: 1.2.2 (affected) Solution: Upgrade to version 1.2.2a or 1.2.3 Credit: R.L. Nicholas