mstolfp.o belongs to the libntp component. As an upstream library, the libntp component can affect many other components, such as ntpd. A remote attacker may trigger this vulnerability by sending malicious data packets to the ntp server.
Created ntp tracking bugs for this issue: Affects: fedora-all [bug 2187690]