Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2014-9293 (GCVE-0-2014-9293)
Vulnerability from cvelistv5 – Published: 2014-12-20 02:00 – Updated: 2024-08-06 13:40
VLAI
EPSS
Summary
The config_auth function in ntpd in NTP before 4.2.7p11, when an auth key is not configured, improperly generates a key, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
22 references
Date Public
2014-12-19 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T13:40:25.037Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "20141222 Multiple Vulnerabilities in ntpd Affecting Cisco Products",
"tags": [
"vendor-advisory",
"x_refsource_CISCO",
"x_transferred"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141222-ntpd"
},
{
"name": "HPSBGN03277",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142590659431171\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04790232"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10103"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://advisories.mageia.org/MGASA-2014-0541.html"
},
{
"name": "VU#852879",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/852879"
},
{
"name": "HPSBUX03240",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142853370924302\u0026w=2"
},
{
"name": "RHSA-2014:2025",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2014-2025.html"
},
{
"name": "62209",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/62209"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://bugs.ntp.org/show_bug.cgi?id=2665"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html"
},
{
"name": "RHSA-2015:0104",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2015-0104.html"
},
{
"name": "HPSBOV03505",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=144182594518755\u0026w=2"
},
{
"name": "SSRT101872",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142853370924302\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://support.ntp.org/bin/view/Main/SecurityNotice"
},
{
"name": "HPSBPV03266",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142469153211996\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04916783"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://bk1.ntp.org/ntp-dev/ntpd/ntp_config.c?PAGE=diffs\u0026REV=4b6089c5KXhXqZqocF0DMXnQQsjOuw"
},
{
"name": "MDVSA-2015:003",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:003"
},
{
"name": "71757",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/71757"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176032"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.arista.com/en/support/advisories-notices/security-advisories/1047-security-advisory-8"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2014-12-19T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "The config_auth function in ntpd in NTP before 4.2.7p11, when an auth key is not configured, improperly generates a key, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-11-05T16:14:59.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "20141222 Multiple Vulnerabilities in ntpd Affecting Cisco Products",
"tags": [
"vendor-advisory",
"x_refsource_CISCO"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141222-ntpd"
},
{
"name": "HPSBGN03277",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142590659431171\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04790232"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10103"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://advisories.mageia.org/MGASA-2014-0541.html"
},
{
"name": "VU#852879",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/852879"
},
{
"name": "HPSBUX03240",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142853370924302\u0026w=2"
},
{
"name": "RHSA-2014:2025",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2014-2025.html"
},
{
"name": "62209",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/62209"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://bugs.ntp.org/show_bug.cgi?id=2665"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html"
},
{
"name": "RHSA-2015:0104",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2015-0104.html"
},
{
"name": "HPSBOV03505",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=144182594518755\u0026w=2"
},
{
"name": "SSRT101872",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142853370924302\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://support.ntp.org/bin/view/Main/SecurityNotice"
},
{
"name": "HPSBPV03266",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142469153211996\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04916783"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://bk1.ntp.org/ntp-dev/ntpd/ntp_config.c?PAGE=diffs\u0026REV=4b6089c5KXhXqZqocF0DMXnQQsjOuw"
},
{
"name": "MDVSA-2015:003",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:003"
},
{
"name": "71757",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/71757"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176032"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.arista.com/en/support/advisories-notices/security-advisories/1047-security-advisory-8"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2014-9293",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The config_auth function in ntpd in NTP before 4.2.7p11, when an auth key is not configured, improperly generates a key, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20141222 Multiple Vulnerabilities in ntpd Affecting Cisco Products",
"refsource": "CISCO",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141222-ntpd"
},
{
"name": "HPSBGN03277",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=142590659431171\u0026w=2"
},
{
"name": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04790232",
"refsource": "CONFIRM",
"url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04790232"
},
{
"name": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10103",
"refsource": "CONFIRM",
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10103"
},
{
"name": "http://advisories.mageia.org/MGASA-2014-0541.html",
"refsource": "CONFIRM",
"url": "http://advisories.mageia.org/MGASA-2014-0541.html"
},
{
"name": "VU#852879",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/852879"
},
{
"name": "HPSBUX03240",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=142853370924302\u0026w=2"
},
{
"name": "RHSA-2014:2025",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2014-2025.html"
},
{
"name": "62209",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/62209"
},
{
"name": "http://bugs.ntp.org/show_bug.cgi?id=2665",
"refsource": "CONFIRM",
"url": "http://bugs.ntp.org/show_bug.cgi?id=2665"
},
{
"name": "http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html"
},
{
"name": "RHSA-2015:0104",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2015-0104.html"
},
{
"name": "HPSBOV03505",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=144182594518755\u0026w=2"
},
{
"name": "SSRT101872",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=142853370924302\u0026w=2"
},
{
"name": "http://support.ntp.org/bin/view/Main/SecurityNotice",
"refsource": "CONFIRM",
"url": "http://support.ntp.org/bin/view/Main/SecurityNotice"
},
{
"name": "HPSBPV03266",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=142469153211996\u0026w=2"
},
{
"name": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04916783",
"refsource": "CONFIRM",
"url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04916783"
},
{
"name": "http://bk1.ntp.org/ntp-dev/ntpd/ntp_config.c?PAGE=diffs\u0026REV=4b6089c5KXhXqZqocF0DMXnQQsjOuw",
"refsource": "CONFIRM",
"url": "http://bk1.ntp.org/ntp-dev/ntpd/ntp_config.c?PAGE=diffs\u0026REV=4b6089c5KXhXqZqocF0DMXnQQsjOuw"
},
{
"name": "MDVSA-2015:003",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:003"
},
{
"name": "71757",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/71757"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1176032",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176032"
},
{
"name": "https://www.arista.com/en/support/advisories-notices/security-advisories/1047-security-advisory-8",
"refsource": "MISC",
"url": "https://www.arista.com/en/support/advisories-notices/security-advisories/1047-security-advisory-8"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2014-9293",
"datePublished": "2014-12-20T02:00:00.000Z",
"dateReserved": "2014-12-05T00:00:00.000Z",
"dateUpdated": "2024-08-06T13:40:25.037Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2014-9293",
"date": "2026-05-29",
"epss": "0.33271",
"percentile": "0.96993"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2014-9293\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2014-12-20T02:59:00.053\",\"lastModified\":\"2026-05-06T22:30:45.220\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The config_auth function in ntpd in NTP before 4.2.7p11, when an auth key is not configured, improperly generates a key, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.\"},{\"lang\":\"es\",\"value\":\"La funci\u00f3n config_auth en ntpd en NTP anterior a 4.2.7p11, cuando no se configura una clave de autenticaci\u00f3n, incorr\u00e9ctamente genera una clave, esto hace que atacantes remotos puedan romper los mecanismos de protecci\u00f3n f\u00e1cilmente mediante un ataque de fuerza bruta.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ntp:ntp:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"4.2.7\",\"matchCriteriaId\":\"8E63507D-C475-4379-85A5-185F19BEDCEE\"}]}]}],\"references\":[{\"url\":\"http://advisories.mageia.org/MGASA-2014-0541.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://bk1.ntp.org/ntp-dev/ntpd/ntp_config.c?PAGE=diffs\u0026REV=4b6089c5KXhXqZqocF0DMXnQQsjOuw\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\"]},{\"url\":\"http://bugs.ntp.org/show_bug.cgi?id=2665\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142469153211996\u0026w=2\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142590659431171\u0026w=2\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142853370924302\u0026w=2\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=144182594518755\u0026w=2\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2014-2025.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2015-0104.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/62209\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://support.ntp.org/bin/view/Main/SecurityNotice\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.kb.cert.org/vuls/id/852879\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2015:003\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/71757\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1176032\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04790232\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04916783\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10103\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141222-ntpd\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.arista.com/en/support/advisories-notices/security-advisories/1047-security-advisory-8\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://advisories.mageia.org/MGASA-2014-0541.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://bk1.ntp.org/ntp-dev/ntpd/ntp_config.c?PAGE=diffs\u0026REV=4b6089c5KXhXqZqocF0DMXnQQsjOuw\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"http://bugs.ntp.org/show_bug.cgi?id=2665\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142469153211996\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142590659431171\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142853370924302\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=144182594518755\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2014-2025.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2015-0104.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/62209\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://support.ntp.org/bin/view/Main/SecurityNotice\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.kb.cert.org/vuls/id/852879\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2015:003\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/71757\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1176032\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04790232\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04916783\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10103\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141222-ntpd\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.arista.com/en/support/advisories-notices/security-advisories/1047-security-advisory-8\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}],\"evaluatorComment\":\"\u003ca href=\\\"http://cwe.mitre.org/data/definitions/332.html\\\"\u003eCWE-332: Insufficient Entropy in PRNG\u003c/a\u003e\"}}"
}
}
RHSA-2015:0104
Vulnerability from csaf_redhat - Published: 2015-01-28 18:52 - Updated: 2025-11-21 17:51Summary
Red Hat Security Advisory: ntp security update
Severity
Important
Notes
Topic: Updated ntp packages that fix several security issues are now available for
Red Hat Enterprise Linux 6.5 Extended Update Support.
Red Hat Product Security has rated this update as having Important security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.
Details: The Network Time Protocol (NTP) is used to synchronize a computer's time
with a referenced time source.
Multiple buffer overflow flaws were discovered in ntpd's crypto_recv(),
ctl_putdata(), and configure() functions. A remote attacker could use
either of these flaws to send a specially crafted request packet that could
crash ntpd or, potentially, execute arbitrary code with the privileges of
the ntp user. Note: the crypto_recv() flaw requires non-default
configurations to be active, while the ctl_putdata() flaw, by default, can
only be exploited via local attackers, and the configure() flaw requires
additional authentication to exploit. (CVE-2014-9295)
It was found that ntpd automatically generated weak keys for its internal
use if no ntpdc request authentication key was specified in the ntp.conf
configuration file. A remote attacker able to match the configured IP
restrictions could guess the generated key, and possibly use it to send
ntpdc query or configuration requests. (CVE-2014-9293)
It was found that ntp-keygen used a weak method for generating MD5 keys.
This could possibly allow an attacker to guess generated MD5 keys that
could then be used to spoof an NTP client or server. Note: it is
recommended to regenerate any MD5 keys that had explicitly been generated
with ntp-keygen; the default installation does not contain such keys.
(CVE-2014-9294)
A missing return statement in the receive() function could potentially
allow a remote attacker to bypass NTP's authentication mechanism.
(CVE-2014-9296)
All ntp users are advised to upgrade to this updated package, which
contains backported patches to resolve these issues. After installing the
update, the ntpd daemon will restart automatically.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
It was found that ntpd automatically generated weak keys for its internal use if no ntpdc request authentication key was specified in the ntp.conf configuration file. A remote attacker able to match the configured IP restrictions could guess the generated key, and possibly use it to send ntpdc query or configuration requests.
4.0 ()
Affected products
Fixed
72 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
It was found that ntp-keygen used a weak method for generating MD5 keys. This could possibly allow an attacker to guess generated MD5 keys that could then be used to spoof an NTP client or server. Note: it is recommended to regenerate any MD5 keys that had explicitly been generated with ntp-keygen; the default installation does not contain such keys.
4.0 ()
Affected products
Fixed
72 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple buffer overflow flaws were discovered in ntpd's crypto_recv(), ctl_putdata(), and configure() functions. A remote attacker could use either of these flaws to send a specially crafted request packet that could crash ntpd or, potentially, execute arbitrary code with the privileges of the ntp user. Note: the crypto_recv() flaw requires non default configurations to be active, while the ctl_putdata() flaw, by default, can only be exploited via local attackers, and the configure() flaw requires additional authentication to exploit.
6.8 ()
Affected products
Fixed
72 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A missing return statement in the receive() function could potentially allow a remote attacker to bypass NTP's authentication mechanism.
5.0 ()
Affected products
Fixed
72 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Low
References
28 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated ntp packages that fix several security issues are now available for \nRed Hat Enterprise Linux 6.5 Extended Update Support.\n\nRed Hat Product Security has rated this update as having Important security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Network Time Protocol (NTP) is used to synchronize a computer\u0027s time\nwith a referenced time source.\n\nMultiple buffer overflow flaws were discovered in ntpd\u0027s crypto_recv(),\nctl_putdata(), and configure() functions. A remote attacker could use\neither of these flaws to send a specially crafted request packet that could\ncrash ntpd or, potentially, execute arbitrary code with the privileges of\nthe ntp user. Note: the crypto_recv() flaw requires non-default\nconfigurations to be active, while the ctl_putdata() flaw, by default, can\nonly be exploited via local attackers, and the configure() flaw requires\nadditional authentication to exploit. (CVE-2014-9295)\n\nIt was found that ntpd automatically generated weak keys for its internal\nuse if no ntpdc request authentication key was specified in the ntp.conf\nconfiguration file. A remote attacker able to match the configured IP\nrestrictions could guess the generated key, and possibly use it to send\nntpdc query or configuration requests. (CVE-2014-9293)\n\nIt was found that ntp-keygen used a weak method for generating MD5 keys.\nThis could possibly allow an attacker to guess generated MD5 keys that\ncould then be used to spoof an NTP client or server. Note: it is\nrecommended to regenerate any MD5 keys that had explicitly been generated\nwith ntp-keygen; the default installation does not contain such keys.\n(CVE-2014-9294)\n\nA missing return statement in the receive() function could potentially\nallow a remote attacker to bypass NTP\u0027s authentication mechanism.\n(CVE-2014-9296)\n\nAll ntp users are advised to upgrade to this updated package, which\ncontains backported patches to resolve these issues. After installing the\nupdate, the ntpd daemon will restart automatically.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2015:0104",
"url": "https://access.redhat.com/errata/RHSA-2015:0104"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1176032",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176032"
},
{
"category": "external",
"summary": "1176035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176035"
},
{
"category": "external",
"summary": "1176037",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176037"
},
{
"category": "external",
"summary": "1176040",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176040"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0104.json"
}
],
"title": "Red Hat Security Advisory: ntp security update",
"tracking": {
"current_release_date": "2025-11-21T17:51:28+00:00",
"generator": {
"date": "2025-11-21T17:51:28+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2015:0104",
"initial_release_date": "2015-01-28T18:52:05+00:00",
"revision_history": [
{
"date": "2015-01-28T18:52:05+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2015-01-28T18:52:05+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:51:28+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:6.5::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product": {
"name": "Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:6.5::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product": {
"name": "Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:6.5::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:6.5::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "ntpdate-0:4.2.6p5-2.el6_5.i686",
"product": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.i686",
"product_id": "ntpdate-0:4.2.6p5-2.el6_5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntpdate@4.2.6p5-2.el6_5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"product": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"product_id": "ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp-debuginfo@4.2.6p5-2.el6_5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "ntp-0:4.2.6p5-2.el6_5.i686",
"product": {
"name": "ntp-0:4.2.6p5-2.el6_5.i686",
"product_id": "ntp-0:4.2.6p5-2.el6_5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp@4.2.6p5-2.el6_5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "ntp-perl-0:4.2.6p5-2.el6_5.i686",
"product": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.i686",
"product_id": "ntp-perl-0:4.2.6p5-2.el6_5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp-perl@4.2.6p5-2.el6_5?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"product": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"product_id": "ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntpdate@4.2.6p5-2.el6_5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"product": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"product_id": "ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp-debuginfo@4.2.6p5-2.el6_5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ntp-0:4.2.6p5-2.el6_5.x86_64",
"product": {
"name": "ntp-0:4.2.6p5-2.el6_5.x86_64",
"product_id": "ntp-0:4.2.6p5-2.el6_5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp@4.2.6p5-2.el6_5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"product": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"product_id": "ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp-perl@4.2.6p5-2.el6_5?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "ntpdate-0:4.2.6p5-2.el6_5.s390x",
"product": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.s390x",
"product_id": "ntpdate-0:4.2.6p5-2.el6_5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntpdate@4.2.6p5-2.el6_5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"product": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"product_id": "ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp-debuginfo@4.2.6p5-2.el6_5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "ntp-0:4.2.6p5-2.el6_5.s390x",
"product": {
"name": "ntp-0:4.2.6p5-2.el6_5.s390x",
"product_id": "ntp-0:4.2.6p5-2.el6_5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp@4.2.6p5-2.el6_5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"product": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"product_id": "ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp-perl@4.2.6p5-2.el6_5?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"product": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"product_id": "ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntpdate@4.2.6p5-2.el6_5?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"product": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"product_id": "ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp-debuginfo@4.2.6p5-2.el6_5?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "ntp-0:4.2.6p5-2.el6_5.ppc64",
"product": {
"name": "ntp-0:4.2.6p5-2.el6_5.ppc64",
"product_id": "ntp-0:4.2.6p5-2.el6_5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp@4.2.6p5-2.el6_5?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"product": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"product_id": "ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp-perl@4.2.6p5-2.el6_5?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "ntp-0:4.2.6p5-2.el6_5.src",
"product": {
"name": "ntp-0:4.2.6p5-2.el6_5.src",
"product_id": "ntp-0:4.2.6p5-2.el6_5.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp@4.2.6p5-2.el6_5?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"product": {
"name": "ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"product_id": "ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp-doc@4.2.6p5-2.el6_5?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.src as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.src",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-0:4.2.6p5-2.el6_5.noarch as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch"
},
"product_reference": "ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.src as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.src",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-0:4.2.6p5-2.el6_5.noarch as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch"
},
"product_reference": "ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.src as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.src",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-0:4.2.6p5-2.el6_5.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch"
},
"product_reference": "ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.src as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.src",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-0:4.2.6p5-2.el6_5.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch"
},
"product_reference": "ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-9293",
"cwe": {
"id": "CWE-338",
"name": "Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)"
},
"discovery_date": "2014-12-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1176032"
}
],
"notes": [
{
"category": "description",
"text": "It was found that ntpd automatically generated weak keys for its internal use if no ntpdc request authentication key was specified in the ntp.conf configuration file. A remote attacker able to match the configured IP restrictions could guess the generated key, and possibly use it to send ntpdc query or configuration requests.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ntp: automatic generation of weak default key in config_auth()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-9293"
},
{
"category": "external",
"summary": "RHBZ#1176032",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176032"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-9293",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9293"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-9293",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-9293"
},
{
"category": "external",
"summary": "http://support.ntp.org/bin/view/Main/SecurityNotice#Weak_default_key_in_config_auth",
"url": "http://support.ntp.org/bin/view/Main/SecurityNotice#Weak_default_key_in_config_auth"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/1305723",
"url": "https://access.redhat.com/articles/1305723"
}
],
"release_date": "2014-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-01-28T18:52:05+00:00",
"details": "Before applying this update, make sure all previously released errata \nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the \nRed Hat Network to apply this update are available at \nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0104"
},
{
"category": "workaround",
"details": "Issue these commands to explicitly generate a strong key and add it to the\nntpd configuration:\n\n echo trustedkey 65535 \u003e\u003e /etc/ntp.conf\n printf \"65535\\tM\\t%s\\n\" $(tr -cd a-zA-Z0-9 \u003c /dev/urandom | head -c 16) \u003e\u003e /etc/ntp/keys\n\nThe generated key has about 95 bits of entropy.",
"product_ids": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
]
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"products": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ntp: automatic generation of weak default key in config_auth()"
},
{
"cve": "CVE-2014-9294",
"cwe": {
"id": "CWE-338",
"name": "Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)"
},
"discovery_date": "2014-12-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1176035"
}
],
"notes": [
{
"category": "description",
"text": "It was found that ntp-keygen used a weak method for generating MD5 keys. This could possibly allow an attacker to guess generated MD5 keys that could then be used to spoof an NTP client or server. Note: it is recommended to regenerate any MD5 keys that had explicitly been generated with ntp-keygen; the default installation does not contain such keys.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ntp: ntp-keygen uses weak random number generator and seed when generating MD5 keys",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-9294"
},
{
"category": "external",
"summary": "RHBZ#1176035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176035"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-9294",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9294"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-9294",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-9294"
},
{
"category": "external",
"summary": "http://support.ntp.org/bin/view/Main/SecurityNotice#non_cryptographic_random_number",
"url": "http://support.ntp.org/bin/view/Main/SecurityNotice#non_cryptographic_random_number"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/1305723",
"url": "https://access.redhat.com/articles/1305723"
}
],
"release_date": "2014-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-01-28T18:52:05+00:00",
"details": "Before applying this update, make sure all previously released errata \nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the \nRed Hat Network to apply this update are available at \nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0104"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"products": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ntp: ntp-keygen uses weak random number generator and seed when generating MD5 keys"
},
{
"cve": "CVE-2014-9295",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2014-12-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1176037"
}
],
"notes": [
{
"category": "description",
"text": "Multiple buffer overflow flaws were discovered in ntpd\u0027s crypto_recv(), ctl_putdata(), and configure() functions. A remote attacker could use either of these flaws to send a specially crafted request packet that could crash ntpd or, potentially, execute arbitrary code with the privileges of the ntp user. Note: the crypto_recv() flaw requires non default configurations to be active, while the ctl_putdata() flaw, by default, can only be exploited via local attackers, and the configure() flaw requires additional authentication to exploit.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ntp: Multiple buffer overflows via specially-crafted packets",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-9295"
},
{
"category": "external",
"summary": "RHBZ#1176037",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176037"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-9295",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9295"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-9295",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-9295"
},
{
"category": "external",
"summary": "http://support.ntp.org/bin/view/Main/SecurityNotice#Buffer_overflow_in_crypto_recv",
"url": "http://support.ntp.org/bin/view/Main/SecurityNotice#Buffer_overflow_in_crypto_recv"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/1305723",
"url": "https://access.redhat.com/articles/1305723"
}
],
"release_date": "2014-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-01-28T18:52:05+00:00",
"details": "Before applying this update, make sure all previously released errata \nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the \nRed Hat Network to apply this update are available at \nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0104"
},
{
"category": "workaround",
"details": "Add these lines (included by default starting with Red Hat Enterprise Linux 5) to the configuration file /etc/ntp.conf:\n\n restrict default kod nomodify notrap nopeer noquery\n restrict -6 default kod nomodify notrap nopeer noquery\n restrict 127.0.0.1 \n restrict -6 ::1\n\nThis restricts server-type functionality to localhost. If ntpd needs to perform time service for specific hosts and networks, you have to list them with suitable restrict statements.",
"product_ids": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
]
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ntp: Multiple buffer overflows via specially-crafted packets"
},
{
"cve": "CVE-2014-9296",
"cwe": {
"id": "CWE-390",
"name": "Detection of Error Condition Without Action"
},
"discovery_date": "2014-12-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1176040"
}
],
"notes": [
{
"category": "description",
"text": "A missing return statement in the receive() function could potentially allow a remote attacker to bypass NTP\u0027s authentication mechanism.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ntp: receive() missing return on error",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of ntpd as shipped with Red Hat Enterprise Linux 4 and 5. It has been addressed in Red Hat Enterprise Linux 6 and 7 via RHSA-2014:2024.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-9296"
},
{
"category": "external",
"summary": "RHBZ#1176040",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176040"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-9296",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-9296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-9296"
},
{
"category": "external",
"summary": "http://support.ntp.org/bin/view/Main/SecurityNotice#receive_missing_return_on_error",
"url": "http://support.ntp.org/bin/view/Main/SecurityNotice#receive_missing_return_on_error"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/1305723",
"url": "https://access.redhat.com/articles/1305723"
}
],
"release_date": "2014-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-01-28T18:52:05+00:00",
"details": "Before applying this update, make sure all previously released errata \nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the \nRed Hat Network to apply this update are available at \nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0104"
},
{
"category": "workaround",
"details": "Remove or comment out all configuration directives beginning with the crypto keyword in your ntp.conf file.",
"product_ids": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
]
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "ntp: receive() missing return on error"
}
]
}
SUSE-SU-2015:0259-1
Vulnerability from csaf_suse - Published: 2014-11-18 12:31 - Updated: 2014-11-18 12:31Summary
Recommended update for ntp
Severity
Moderate
Notes
Title of the patch: Recommended update for ntp
Description of the patch:
This update for ntp provides the following fixes:
* Respect NTPD_FORCE_SYNC_ON_STARTUP also for dynamic peers.
(bnc#887957)
* Fix orphan mode. (bnc#883859)
Patchnames: sledsp3-ntp,slessp3-ntp
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
34 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
34 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
34 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
34 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
34 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
34 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
34 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
34 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
61 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Recommended update for ntp",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThis update for ntp provides the following fixes:\n\n * Respect NTPD_FORCE_SYNC_ON_STARTUP also for dynamic peers.\n (bnc#887957)\n * Fix orphan mode. (bnc#883859)\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "sledsp3-ntp,slessp3-ntp",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_0259-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2015:0259-1",
"url": "https://www.suse.com/support/update/announcement/2015/suse-su-20150259-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2015:0259-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2015-February/001217.html"
},
{
"category": "self",
"summary": "SUSE Bug 838458",
"url": "https://bugzilla.suse.com/838458"
},
{
"category": "self",
"summary": "SUSE Bug 857195",
"url": "https://bugzilla.suse.com/857195"
},
{
"category": "self",
"summary": "SUSE Bug 883859",
"url": "https://bugzilla.suse.com/883859"
},
{
"category": "self",
"summary": "SUSE Bug 887957",
"url": "https://bugzilla.suse.com/887957"
},
{
"category": "self",
"summary": "SUSE Bug 910764",
"url": "https://bugzilla.suse.com/910764"
},
{
"category": "self",
"summary": "SUSE Bug 911792",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "self",
"summary": "SUSE Bug 924202",
"url": "https://bugzilla.suse.com/924202"
},
{
"category": "self",
"summary": "SUSE Bug 928321",
"url": "https://bugzilla.suse.com/928321"
},
{
"category": "self",
"summary": "SUSE Bug 935409",
"url": "https://bugzilla.suse.com/935409"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-5211 page",
"url": "https://www.suse.com/security/cve/CVE-2013-5211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9293 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9293/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9294 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9294/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9295 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9295/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9297 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9298 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9298/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1799 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1799/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3405 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3405/"
}
],
"title": "Recommended update for ntp",
"tracking": {
"current_release_date": "2014-11-18T12:31:05Z",
"generator": {
"date": "2014-11-18T12:31:05Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2015:0259-1",
"initial_release_date": "2014-11-18T12:31:05Z",
"revision_history": [
{
"date": "2014-11-18T12:31:05Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "ntp-4.2.4p8-1.26.1.i586",
"product": {
"name": "ntp-4.2.4p8-1.26.1.i586",
"product_id": "ntp-4.2.4p8-1.26.1.i586"
}
},
{
"category": "product_version",
"name": "ntp-doc-4.2.4p8-1.26.1.i586",
"product": {
"name": "ntp-doc-4.2.4p8-1.26.1.i586",
"product_id": "ntp-doc-4.2.4p8-1.26.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "ntp-4.2.4p8-1.26.1.ia64",
"product": {
"name": "ntp-4.2.4p8-1.26.1.ia64",
"product_id": "ntp-4.2.4p8-1.26.1.ia64"
}
},
{
"category": "product_version",
"name": "ntp-doc-4.2.4p8-1.26.1.ia64",
"product": {
"name": "ntp-doc-4.2.4p8-1.26.1.ia64",
"product_id": "ntp-doc-4.2.4p8-1.26.1.ia64"
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "ntp-4.2.4p8-1.26.1.ppc64",
"product": {
"name": "ntp-4.2.4p8-1.26.1.ppc64",
"product_id": "ntp-4.2.4p8-1.26.1.ppc64"
}
},
{
"category": "product_version",
"name": "ntp-doc-4.2.4p8-1.26.1.ppc64",
"product": {
"name": "ntp-doc-4.2.4p8-1.26.1.ppc64",
"product_id": "ntp-doc-4.2.4p8-1.26.1.ppc64"
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "ntp-4.2.4p8-1.26.1.s390x",
"product": {
"name": "ntp-4.2.4p8-1.26.1.s390x",
"product_id": "ntp-4.2.4p8-1.26.1.s390x"
}
},
{
"category": "product_version",
"name": "ntp-doc-4.2.4p8-1.26.1.s390x",
"product": {
"name": "ntp-doc-4.2.4p8-1.26.1.s390x",
"product_id": "ntp-doc-4.2.4p8-1.26.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ntp-4.2.4p8-1.26.1.x86_64",
"product": {
"name": "ntp-4.2.4p8-1.26.1.x86_64",
"product_id": "ntp-4.2.4p8-1.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "ntp-doc-4.2.4p8-1.26.1.x86_64",
"product": {
"name": "ntp-doc-4.2.4p8-1.26.1.x86_64",
"product_id": "ntp-doc-4.2.4p8-1.26.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Desktop 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sled:11:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sles:11:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:11:sp3:teradata"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:11:sp3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.i586 as component of SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586"
},
"product_reference": "ntp-4.2.4p8-1.26.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.x86_64 as component of SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64"
},
"product_reference": "ntp-4.2.4p8-1.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.i586 as component of SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.x86_64 as component of SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.i586 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586"
},
"product_reference": "ntp-4.2.4p8-1.26.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64"
},
"product_reference": "ntp-4.2.4p8-1.26.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64"
},
"product_reference": "ntp-4.2.4p8-1.26.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.s390x as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x"
},
"product_reference": "ntp-4.2.4p8-1.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64"
},
"product_reference": "ntp-4.2.4p8-1.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.i586 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.s390x as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586"
},
"product_reference": "ntp-4.2.4p8-1.26.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64"
},
"product_reference": "ntp-4.2.4p8-1.26.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64"
},
"product_reference": "ntp-4.2.4p8-1.26.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x"
},
"product_reference": "ntp-4.2.4p8-1.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64"
},
"product_reference": "ntp-4.2.4p8-1.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586"
},
"product_reference": "ntp-4.2.4p8-1.26.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64"
},
"product_reference": "ntp-4.2.4p8-1.26.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64"
},
"product_reference": "ntp-4.2.4p8-1.26.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x"
},
"product_reference": "ntp-4.2.4p8-1.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64"
},
"product_reference": "ntp-4.2.4p8-1.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2013-5211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-5211"
}
],
"notes": [
{
"category": "general",
"text": "The monlist feature in ntp_request.c in ntpd in NTP before 4.2.7p26 allows remote attackers to cause a denial of service (traffic amplification) via forged (1) REQ_MON_GETLIST or (2) REQ_MON_GETLIST_1 requests, as exploited in the wild in December 2013.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-5211",
"url": "https://www.suse.com/security/cve/CVE-2013-5211"
},
{
"category": "external",
"summary": "SUSE Bug 857195 for CVE-2013-5211",
"url": "https://bugzilla.suse.com/857195"
},
{
"category": "external",
"summary": "SUSE Bug 889447 for CVE-2013-5211",
"url": "https://bugzilla.suse.com/889447"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2013-5211",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-11-18T12:31:05Z",
"details": "moderate"
}
],
"title": "CVE-2013-5211"
},
{
"cve": "CVE-2014-9293",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9293"
}
],
"notes": [
{
"category": "general",
"text": "The config_auth function in ntpd in NTP before 4.2.7p11, when an auth key is not configured, improperly generates a key, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9293",
"url": "https://www.suse.com/security/cve/CVE-2014-9293"
},
{
"category": "external",
"summary": "SUSE Bug 910764 for CVE-2014-9293",
"url": "https://bugzilla.suse.com/910764"
},
{
"category": "external",
"summary": "SUSE Bug 911053 for CVE-2014-9293",
"url": "https://bugzilla.suse.com/911053"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9293",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9293",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-11-18T12:31:05Z",
"details": "important"
}
],
"title": "CVE-2014-9293"
},
{
"cve": "CVE-2014-9294",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9294"
}
],
"notes": [
{
"category": "general",
"text": "util/ntp-keygen.c in ntp-keygen in NTP before 4.2.7p230 uses a weak RNG seed, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9294",
"url": "https://www.suse.com/security/cve/CVE-2014-9294"
},
{
"category": "external",
"summary": "SUSE Bug 910764 for CVE-2014-9294",
"url": "https://bugzilla.suse.com/910764"
},
{
"category": "external",
"summary": "SUSE Bug 911053 for CVE-2014-9294",
"url": "https://bugzilla.suse.com/911053"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9294",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9294",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-11-18T12:31:05Z",
"details": "important"
}
],
"title": "CVE-2014-9294"
},
{
"cve": "CVE-2014-9295",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9295"
}
],
"notes": [
{
"category": "general",
"text": "Multiple stack-based buffer overflows in ntpd in NTP before 4.2.8 allow remote attackers to execute arbitrary code via a crafted packet, related to (1) the crypto_recv function when the Autokey Authentication feature is used, (2) the ctl_putdata function, and (3) the configure function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9295",
"url": "https://www.suse.com/security/cve/CVE-2014-9295"
},
{
"category": "external",
"summary": "SUSE Bug 910764 for CVE-2014-9295",
"url": "https://bugzilla.suse.com/910764"
},
{
"category": "external",
"summary": "SUSE Bug 911053 for CVE-2014-9295",
"url": "https://bugzilla.suse.com/911053"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9295",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 916239 for CVE-2014-9295",
"url": "https://bugzilla.suse.com/916239"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9295",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-11-18T12:31:05Z",
"details": "important"
}
],
"title": "CVE-2014-9295"
},
{
"cve": "CVE-2014-9297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9297"
}
],
"notes": [
{
"category": "general",
"text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-9750, CVE-2014-9751. Reason: this ID was intended for one issue, but was associated with two issues. Notes: All CVE users should consult CVE-2014-9750 and CVE-2014-9751 to identify the ID or IDs of interest. All references and descriptions in this candidate have been removed to prevent accidental usage",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9297",
"url": "https://www.suse.com/security/cve/CVE-2014-9297"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9297",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 948963 for CVE-2014-9297",
"url": "https://bugzilla.suse.com/948963"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9297",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-11-18T12:31:05Z",
"details": "important"
}
],
"title": "CVE-2014-9297"
},
{
"cve": "CVE-2014-9298",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9298"
}
],
"notes": [
{
"category": "general",
"text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-9750, CVE-2014-9751. Reason: this ID was intended for one issue, but was associated with two issues. Notes: All CVE users should consult CVE-2014-9750 and CVE-2014-9751 to identify the ID or IDs of interest. All references and descriptions in this candidate have been removed to prevent accidental usage",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9298",
"url": "https://www.suse.com/security/cve/CVE-2014-9298"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9298",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 948963 for CVE-2014-9298",
"url": "https://bugzilla.suse.com/948963"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9298",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-11-18T12:31:05Z",
"details": "important"
}
],
"title": "CVE-2014-9298"
},
{
"cve": "CVE-2015-1799",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1799"
}
],
"notes": [
{
"category": "general",
"text": "The symmetric-key feature in the receive function in ntp_proto.c in ntpd in NTP 3.x and 4.x before 4.2.8p2 performs state-variable updates upon receiving certain invalid packets, which makes it easier for man-in-the-middle attackers to cause a denial of service (synchronization loss) by spoofing the source IP address of a peer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1799",
"url": "https://www.suse.com/security/cve/CVE-2015-1799"
},
{
"category": "external",
"summary": "SUSE Bug 924202 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/924202"
},
{
"category": "external",
"summary": "SUSE Bug 927497 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/927497"
},
{
"category": "external",
"summary": "SUSE Bug 928321 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/928321"
},
{
"category": "external",
"summary": "SUSE Bug 936327 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/936327"
},
{
"category": "external",
"summary": "SUSE Bug 943565 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/943565"
},
{
"category": "external",
"summary": "SUSE Bug 957163 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/957163"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/959243"
},
{
"category": "external",
"summary": "SUSE Bug 962624 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/962624"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-11-18T12:31:05Z",
"details": "important"
}
],
"title": "CVE-2015-1799"
},
{
"cve": "CVE-2015-3405",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3405"
}
],
"notes": [
{
"category": "general",
"text": "ntp-keygen in ntp 4.2.8px before 4.2.8p2-RC2 and 4.3.x before 4.3.12 does not generate MD5 keys with sufficient entropy on big endian machines when the lowest order byte of the temp variable is between 0x20 and 0x7f and not #, which might allow remote attackers to obtain the value of generated MD5 keys via a brute force attack with the 93 possible keys.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3405",
"url": "https://www.suse.com/security/cve/CVE-2015-3405"
},
{
"category": "external",
"summary": "SUSE Bug 924202 for CVE-2015-3405",
"url": "https://bugzilla.suse.com/924202"
},
{
"category": "external",
"summary": "SUSE Bug 928321 for CVE-2015-3405",
"url": "https://bugzilla.suse.com/928321"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-11-18T12:31:05Z",
"details": "important"
}
],
"title": "CVE-2015-3405"
}
]
}
SUSE-SU-2015:0259-2
Vulnerability from csaf_suse - Published: 2012-11-22 17:45 - Updated: 2012-11-22 17:45Summary
Recommended update for ntp
Severity
Moderate
Notes
Title of the patch: Recommended update for ntp
Description of the patch:
This collective update for the Network Time Protocol daemon (ntp) provides
fixes for the following reports:
* 758253: ntp fails if a host has more than 1024 IP addresses
* 771480: sntp not able to sync against Windows ntp server.
Patchnames: slessp2-ntp
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
30 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
30 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
30 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
30 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
30 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
37 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Recommended update for ntp",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThis collective update for the Network Time Protocol daemon (ntp) provides \nfixes for the following reports:\n\n * 758253: ntp fails if a host has more than 1024 IP addresses\n * 771480: sntp not able to sync against Windows ntp server.\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "slessp2-ntp",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_0259-2.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2015:0259-2",
"url": "https://www.suse.com/support/update/announcement/2015/suse-su-20150259-2/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2015:0259-2",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2015-February/001222.html"
},
{
"category": "self",
"summary": "SUSE Bug 758253",
"url": "https://bugzilla.suse.com/758253"
},
{
"category": "self",
"summary": "SUSE Bug 771480",
"url": "https://bugzilla.suse.com/771480"
},
{
"category": "self",
"summary": "SUSE Bug 910764",
"url": "https://bugzilla.suse.com/910764"
},
{
"category": "self",
"summary": "SUSE Bug 911792",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9293 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9293/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9294 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9294/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9295 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9295/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9297 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9298 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9298/"
}
],
"title": "Recommended update for ntp",
"tracking": {
"current_release_date": "2012-11-22T17:45:21Z",
"generator": {
"date": "2012-11-22T17:45:21Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2015:0259-2",
"initial_release_date": "2012-11-22T17:45:21Z",
"revision_history": [
{
"date": "2012-11-22T17:45:21Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "ntp-4.2.4p8-1.20.1.i586",
"product": {
"name": "ntp-4.2.4p8-1.20.1.i586",
"product_id": "ntp-4.2.4p8-1.20.1.i586"
}
},
{
"category": "product_version",
"name": "ntp-doc-4.2.4p8-1.20.1.i586",
"product": {
"name": "ntp-doc-4.2.4p8-1.20.1.i586",
"product_id": "ntp-doc-4.2.4p8-1.20.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "ntp-4.2.4p8-1.20.1.ia64",
"product": {
"name": "ntp-4.2.4p8-1.20.1.ia64",
"product_id": "ntp-4.2.4p8-1.20.1.ia64"
}
},
{
"category": "product_version",
"name": "ntp-doc-4.2.4p8-1.20.1.ia64",
"product": {
"name": "ntp-doc-4.2.4p8-1.20.1.ia64",
"product_id": "ntp-doc-4.2.4p8-1.20.1.ia64"
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "ntp-4.2.4p8-1.20.1.ppc64",
"product": {
"name": "ntp-4.2.4p8-1.20.1.ppc64",
"product_id": "ntp-4.2.4p8-1.20.1.ppc64"
}
},
{
"category": "product_version",
"name": "ntp-doc-4.2.4p8-1.20.1.ppc64",
"product": {
"name": "ntp-doc-4.2.4p8-1.20.1.ppc64",
"product_id": "ntp-doc-4.2.4p8-1.20.1.ppc64"
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "ntp-4.2.4p8-1.20.1.s390x",
"product": {
"name": "ntp-4.2.4p8-1.20.1.s390x",
"product_id": "ntp-4.2.4p8-1.20.1.s390x"
}
},
{
"category": "product_version",
"name": "ntp-doc-4.2.4p8-1.20.1.s390x",
"product": {
"name": "ntp-doc-4.2.4p8-1.20.1.s390x",
"product_id": "ntp-doc-4.2.4p8-1.20.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ntp-4.2.4p8-1.20.1.x86_64",
"product": {
"name": "ntp-4.2.4p8-1.20.1.x86_64",
"product_id": "ntp-4.2.4p8-1.20.1.x86_64"
}
},
{
"category": "product_version",
"name": "ntp-doc-4.2.4p8-1.20.1.x86_64",
"product": {
"name": "ntp-doc-4.2.4p8-1.20.1.x86_64",
"product_id": "ntp-doc-4.2.4p8-1.20.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP2",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP2",
"product_id": "SUSE Linux Enterprise Server 11 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sles:11:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sles_ltss:11:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 11 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 11 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:11:sp2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.20.1.i586 as component of SUSE Linux Enterprise Server 11 SP2",
"product_id": "SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.i586"
},
"product_reference": "ntp-4.2.4p8-1.20.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.20.1.ia64 as component of SUSE Linux Enterprise Server 11 SP2",
"product_id": "SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ia64"
},
"product_reference": "ntp-4.2.4p8-1.20.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.20.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP2",
"product_id": "SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ppc64"
},
"product_reference": "ntp-4.2.4p8-1.20.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.20.1.s390x as component of SUSE Linux Enterprise Server 11 SP2",
"product_id": "SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.s390x"
},
"product_reference": "ntp-4.2.4p8-1.20.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.20.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP2",
"product_id": "SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.x86_64"
},
"product_reference": "ntp-4.2.4p8-1.20.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.20.1.i586 as component of SUSE Linux Enterprise Server 11 SP2",
"product_id": "SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586"
},
"product_reference": "ntp-doc-4.2.4p8-1.20.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.20.1.ia64 as component of SUSE Linux Enterprise Server 11 SP2",
"product_id": "SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64"
},
"product_reference": "ntp-doc-4.2.4p8-1.20.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.20.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP2",
"product_id": "SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64"
},
"product_reference": "ntp-doc-4.2.4p8-1.20.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.20.1.s390x as component of SUSE Linux Enterprise Server 11 SP2",
"product_id": "SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x"
},
"product_reference": "ntp-doc-4.2.4p8-1.20.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.20.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP2",
"product_id": "SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64"
},
"product_reference": "ntp-doc-4.2.4p8-1.20.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.20.1.i586 as component of SUSE Linux Enterprise Server 11 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.i586"
},
"product_reference": "ntp-4.2.4p8-1.20.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.20.1.ia64 as component of SUSE Linux Enterprise Server 11 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ia64"
},
"product_reference": "ntp-4.2.4p8-1.20.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.20.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ppc64"
},
"product_reference": "ntp-4.2.4p8-1.20.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.20.1.s390x as component of SUSE Linux Enterprise Server 11 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.s390x"
},
"product_reference": "ntp-4.2.4p8-1.20.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.20.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.x86_64"
},
"product_reference": "ntp-4.2.4p8-1.20.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.20.1.i586 as component of SUSE Linux Enterprise Server 11 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.i586"
},
"product_reference": "ntp-doc-4.2.4p8-1.20.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.20.1.ia64 as component of SUSE Linux Enterprise Server 11 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ia64"
},
"product_reference": "ntp-doc-4.2.4p8-1.20.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.20.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ppc64"
},
"product_reference": "ntp-doc-4.2.4p8-1.20.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.20.1.s390x as component of SUSE Linux Enterprise Server 11 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.s390x"
},
"product_reference": "ntp-doc-4.2.4p8-1.20.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.20.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.x86_64"
},
"product_reference": "ntp-doc-4.2.4p8-1.20.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.20.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.i586"
},
"product_reference": "ntp-4.2.4p8-1.20.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.20.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ia64"
},
"product_reference": "ntp-4.2.4p8-1.20.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.20.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ppc64"
},
"product_reference": "ntp-4.2.4p8-1.20.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.20.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.s390x"
},
"product_reference": "ntp-4.2.4p8-1.20.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.20.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.x86_64"
},
"product_reference": "ntp-4.2.4p8-1.20.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.20.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586"
},
"product_reference": "ntp-doc-4.2.4p8-1.20.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.20.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64"
},
"product_reference": "ntp-doc-4.2.4p8-1.20.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.20.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64"
},
"product_reference": "ntp-doc-4.2.4p8-1.20.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.20.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x"
},
"product_reference": "ntp-doc-4.2.4p8-1.20.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.20.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64"
},
"product_reference": "ntp-doc-4.2.4p8-1.20.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-9293",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9293"
}
],
"notes": [
{
"category": "general",
"text": "The config_auth function in ntpd in NTP before 4.2.7p11, when an auth key is not configured, improperly generates a key, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9293",
"url": "https://www.suse.com/security/cve/CVE-2014-9293"
},
{
"category": "external",
"summary": "SUSE Bug 910764 for CVE-2014-9293",
"url": "https://bugzilla.suse.com/910764"
},
{
"category": "external",
"summary": "SUSE Bug 911053 for CVE-2014-9293",
"url": "https://bugzilla.suse.com/911053"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9293",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9293",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2012-11-22T17:45:21Z",
"details": "important"
}
],
"title": "CVE-2014-9293"
},
{
"cve": "CVE-2014-9294",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9294"
}
],
"notes": [
{
"category": "general",
"text": "util/ntp-keygen.c in ntp-keygen in NTP before 4.2.7p230 uses a weak RNG seed, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9294",
"url": "https://www.suse.com/security/cve/CVE-2014-9294"
},
{
"category": "external",
"summary": "SUSE Bug 910764 for CVE-2014-9294",
"url": "https://bugzilla.suse.com/910764"
},
{
"category": "external",
"summary": "SUSE Bug 911053 for CVE-2014-9294",
"url": "https://bugzilla.suse.com/911053"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9294",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9294",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2012-11-22T17:45:21Z",
"details": "important"
}
],
"title": "CVE-2014-9294"
},
{
"cve": "CVE-2014-9295",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9295"
}
],
"notes": [
{
"category": "general",
"text": "Multiple stack-based buffer overflows in ntpd in NTP before 4.2.8 allow remote attackers to execute arbitrary code via a crafted packet, related to (1) the crypto_recv function when the Autokey Authentication feature is used, (2) the ctl_putdata function, and (3) the configure function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9295",
"url": "https://www.suse.com/security/cve/CVE-2014-9295"
},
{
"category": "external",
"summary": "SUSE Bug 910764 for CVE-2014-9295",
"url": "https://bugzilla.suse.com/910764"
},
{
"category": "external",
"summary": "SUSE Bug 911053 for CVE-2014-9295",
"url": "https://bugzilla.suse.com/911053"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9295",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 916239 for CVE-2014-9295",
"url": "https://bugzilla.suse.com/916239"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9295",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2012-11-22T17:45:21Z",
"details": "important"
}
],
"title": "CVE-2014-9295"
},
{
"cve": "CVE-2014-9297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9297"
}
],
"notes": [
{
"category": "general",
"text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-9750, CVE-2014-9751. Reason: this ID was intended for one issue, but was associated with two issues. Notes: All CVE users should consult CVE-2014-9750 and CVE-2014-9751 to identify the ID or IDs of interest. All references and descriptions in this candidate have been removed to prevent accidental usage",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9297",
"url": "https://www.suse.com/security/cve/CVE-2014-9297"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9297",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 948963 for CVE-2014-9297",
"url": "https://bugzilla.suse.com/948963"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9297",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2012-11-22T17:45:21Z",
"details": "important"
}
],
"title": "CVE-2014-9297"
},
{
"cve": "CVE-2014-9298",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9298"
}
],
"notes": [
{
"category": "general",
"text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-9750, CVE-2014-9751. Reason: this ID was intended for one issue, but was associated with two issues. Notes: All CVE users should consult CVE-2014-9750 and CVE-2014-9751 to identify the ID or IDs of interest. All references and descriptions in this candidate have been removed to prevent accidental usage",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9298",
"url": "https://www.suse.com/security/cve/CVE-2014-9298"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9298",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 948963 for CVE-2014-9298",
"url": "https://bugzilla.suse.com/948963"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9298",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2-LTSS:ntp-doc-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-4.2.4p8-1.20.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP2:ntp-doc-4.2.4p8-1.20.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2012-11-22T17:45:21Z",
"details": "important"
}
],
"title": "CVE-2014-9298"
}
]
}
SUSE-SU-2015:0259-3
Vulnerability from csaf_suse - Published: 2014-07-21 14:05 - Updated: 2014-07-21 14:05Summary
Security update for ntp
Severity
Moderate
Notes
Title of the patch: Security update for ntp
Description of the patch:
The NTP time service could have been used for remote denial of service
amplification attacks.
This issue can be fixed by the administrator as we described in our
security advisory SUSE-SA:2014:001
http://lists.opensuse.org/opensuse-security-announce/2014-01/msg00005.html
<http://lists.opensuse.org/opensuse-security-announce/2014-01/msg00005.html>
and on
http://support.novell.com/security/cve/CVE-2013-5211.html
<http://support.novell.com/security/cve/CVE-2013-5211.html>
this update now also replaces the default ntp.conf template to fix this
problem.
Please note that if you have touched or modified ntp.conf yourself, it will
not be automatically fixed, you need to merge the changes manually as
described.
Additionally the following bug has been fixed:
* ntp start script does not update /var/lib/ntp/etc/localtime file if
/etc/localtime is symlink (bnc#838458)
Security Issues:
* CVE-2013-5211
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5211>
Patchnames: slessp1-ntp
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
69 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for ntp",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe NTP time service could have been used for remote denial of service \namplification attacks.\n\nThis issue can be fixed by the administrator as we described in our \nsecurity advisory SUSE-SA:2014:001\n\nhttp://lists.opensuse.org/opensuse-security-announce/2014-01/msg00005.html\n\u003chttp://lists.opensuse.org/opensuse-security-announce/2014-01/msg00005.html\u003e\n\nand on\n\nhttp://support.novell.com/security/cve/CVE-2013-5211.html\n\u003chttp://support.novell.com/security/cve/CVE-2013-5211.html\u003e\n\nthis update now also replaces the default ntp.conf template to fix this \nproblem.\n\nPlease note that if you have touched or modified ntp.conf yourself, it will \nnot be automatically fixed, you need to merge the changes manually as \ndescribed.\n\nAdditionally the following bug has been fixed:\n\n * ntp start script does not update /var/lib/ntp/etc/localtime file if\n /etc/localtime is symlink (bnc#838458)\n\nSecurity Issues:\n\n * CVE-2013-5211\n \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5211\u003e\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "slessp1-ntp",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_0259-3.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2015:0259-3",
"url": "https://www.suse.com/support/update/announcement/2015/suse-su-20150259-3/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2015:0259-3",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2015-February/001229.html"
},
{
"category": "self",
"summary": "SUSE Bug 611513",
"url": "https://bugzilla.suse.com/611513"
},
{
"category": "self",
"summary": "SUSE Bug 645356",
"url": "https://bugzilla.suse.com/645356"
},
{
"category": "self",
"summary": "SUSE Bug 656345",
"url": "https://bugzilla.suse.com/656345"
},
{
"category": "self",
"summary": "SUSE Bug 680301",
"url": "https://bugzilla.suse.com/680301"
},
{
"category": "self",
"summary": "SUSE Bug 692969",
"url": "https://bugzilla.suse.com/692969"
},
{
"category": "self",
"summary": "SUSE Bug 730374",
"url": "https://bugzilla.suse.com/730374"
},
{
"category": "self",
"summary": "SUSE Bug 734467",
"url": "https://bugzilla.suse.com/734467"
},
{
"category": "self",
"summary": "SUSE Bug 758253",
"url": "https://bugzilla.suse.com/758253"
},
{
"category": "self",
"summary": "SUSE Bug 771480",
"url": "https://bugzilla.suse.com/771480"
},
{
"category": "self",
"summary": "SUSE Bug 817893",
"url": "https://bugzilla.suse.com/817893"
},
{
"category": "self",
"summary": "SUSE Bug 838458",
"url": "https://bugzilla.suse.com/838458"
},
{
"category": "self",
"summary": "SUSE Bug 857195",
"url": "https://bugzilla.suse.com/857195"
},
{
"category": "self",
"summary": "SUSE Bug 910764",
"url": "https://bugzilla.suse.com/910764"
},
{
"category": "self",
"summary": "SUSE Bug 911792",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "self",
"summary": "SUSE Bug 924202",
"url": "https://bugzilla.suse.com/924202"
},
{
"category": "self",
"summary": "SUSE Bug 928321",
"url": "https://bugzilla.suse.com/928321"
},
{
"category": "self",
"summary": "SUSE Bug 935409",
"url": "https://bugzilla.suse.com/935409"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-5211 page",
"url": "https://www.suse.com/security/cve/CVE-2013-5211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9293 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9293/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9294 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9294/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9295 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9295/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9297 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9298 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9298/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1799 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1799/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3405 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3405/"
}
],
"title": "Security update for ntp",
"tracking": {
"current_release_date": "2014-07-21T14:05:24Z",
"generator": {
"date": "2014-07-21T14:05:24Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2015:0259-3",
"initial_release_date": "2014-07-21T14:05:24Z",
"revision_history": [
{
"date": "2014-07-21T14:05:24Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "ntp-4.2.4p8-1.24.1.i586",
"product": {
"name": "ntp-4.2.4p8-1.24.1.i586",
"product_id": "ntp-4.2.4p8-1.24.1.i586"
}
},
{
"category": "product_version",
"name": "ntp-doc-4.2.4p8-1.24.1.i586",
"product": {
"name": "ntp-doc-4.2.4p8-1.24.1.i586",
"product_id": "ntp-doc-4.2.4p8-1.24.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "ntp-4.2.4p8-1.24.1.s390x",
"product": {
"name": "ntp-4.2.4p8-1.24.1.s390x",
"product_id": "ntp-4.2.4p8-1.24.1.s390x"
}
},
{
"category": "product_version",
"name": "ntp-doc-4.2.4p8-1.24.1.s390x",
"product": {
"name": "ntp-doc-4.2.4p8-1.24.1.s390x",
"product_id": "ntp-doc-4.2.4p8-1.24.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ntp-4.2.4p8-1.24.1.x86_64",
"product": {
"name": "ntp-4.2.4p8-1.24.1.x86_64",
"product_id": "ntp-4.2.4p8-1.24.1.x86_64"
}
},
{
"category": "product_version",
"name": "ntp-doc-4.2.4p8-1.24.1.x86_64",
"product": {
"name": "ntp-doc-4.2.4p8-1.24.1.x86_64",
"product_id": "ntp-doc-4.2.4p8-1.24.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sles_ltss:11:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:11:sp1:teradata"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.24.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586"
},
"product_reference": "ntp-4.2.4p8-1.24.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.24.1.s390x as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x"
},
"product_reference": "ntp-4.2.4p8-1.24.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.24.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64"
},
"product_reference": "ntp-4.2.4p8-1.24.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.24.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586"
},
"product_reference": "ntp-doc-4.2.4p8-1.24.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.24.1.s390x as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x"
},
"product_reference": "ntp-doc-4.2.4p8-1.24.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.24.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64"
},
"product_reference": "ntp-doc-4.2.4p8-1.24.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.24.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586"
},
"product_reference": "ntp-4.2.4p8-1.24.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.24.1.s390x as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x"
},
"product_reference": "ntp-4.2.4p8-1.24.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.24.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64"
},
"product_reference": "ntp-4.2.4p8-1.24.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.24.1.i586 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586"
},
"product_reference": "ntp-doc-4.2.4p8-1.24.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.24.1.s390x as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x"
},
"product_reference": "ntp-doc-4.2.4p8-1.24.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.24.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64"
},
"product_reference": "ntp-doc-4.2.4p8-1.24.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP1-TERADATA"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2013-5211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-5211"
}
],
"notes": [
{
"category": "general",
"text": "The monlist feature in ntp_request.c in ntpd in NTP before 4.2.7p26 allows remote attackers to cause a denial of service (traffic amplification) via forged (1) REQ_MON_GETLIST or (2) REQ_MON_GETLIST_1 requests, as exploited in the wild in December 2013.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-5211",
"url": "https://www.suse.com/security/cve/CVE-2013-5211"
},
{
"category": "external",
"summary": "SUSE Bug 857195 for CVE-2013-5211",
"url": "https://bugzilla.suse.com/857195"
},
{
"category": "external",
"summary": "SUSE Bug 889447 for CVE-2013-5211",
"url": "https://bugzilla.suse.com/889447"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2013-5211",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-07-21T14:05:24Z",
"details": "moderate"
}
],
"title": "CVE-2013-5211"
},
{
"cve": "CVE-2014-9293",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9293"
}
],
"notes": [
{
"category": "general",
"text": "The config_auth function in ntpd in NTP before 4.2.7p11, when an auth key is not configured, improperly generates a key, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9293",
"url": "https://www.suse.com/security/cve/CVE-2014-9293"
},
{
"category": "external",
"summary": "SUSE Bug 910764 for CVE-2014-9293",
"url": "https://bugzilla.suse.com/910764"
},
{
"category": "external",
"summary": "SUSE Bug 911053 for CVE-2014-9293",
"url": "https://bugzilla.suse.com/911053"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9293",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9293",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-07-21T14:05:24Z",
"details": "important"
}
],
"title": "CVE-2014-9293"
},
{
"cve": "CVE-2014-9294",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9294"
}
],
"notes": [
{
"category": "general",
"text": "util/ntp-keygen.c in ntp-keygen in NTP before 4.2.7p230 uses a weak RNG seed, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9294",
"url": "https://www.suse.com/security/cve/CVE-2014-9294"
},
{
"category": "external",
"summary": "SUSE Bug 910764 for CVE-2014-9294",
"url": "https://bugzilla.suse.com/910764"
},
{
"category": "external",
"summary": "SUSE Bug 911053 for CVE-2014-9294",
"url": "https://bugzilla.suse.com/911053"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9294",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9294",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-07-21T14:05:24Z",
"details": "important"
}
],
"title": "CVE-2014-9294"
},
{
"cve": "CVE-2014-9295",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9295"
}
],
"notes": [
{
"category": "general",
"text": "Multiple stack-based buffer overflows in ntpd in NTP before 4.2.8 allow remote attackers to execute arbitrary code via a crafted packet, related to (1) the crypto_recv function when the Autokey Authentication feature is used, (2) the ctl_putdata function, and (3) the configure function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9295",
"url": "https://www.suse.com/security/cve/CVE-2014-9295"
},
{
"category": "external",
"summary": "SUSE Bug 910764 for CVE-2014-9295",
"url": "https://bugzilla.suse.com/910764"
},
{
"category": "external",
"summary": "SUSE Bug 911053 for CVE-2014-9295",
"url": "https://bugzilla.suse.com/911053"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9295",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 916239 for CVE-2014-9295",
"url": "https://bugzilla.suse.com/916239"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9295",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-07-21T14:05:24Z",
"details": "important"
}
],
"title": "CVE-2014-9295"
},
{
"cve": "CVE-2014-9297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9297"
}
],
"notes": [
{
"category": "general",
"text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-9750, CVE-2014-9751. Reason: this ID was intended for one issue, but was associated with two issues. Notes: All CVE users should consult CVE-2014-9750 and CVE-2014-9751 to identify the ID or IDs of interest. All references and descriptions in this candidate have been removed to prevent accidental usage",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9297",
"url": "https://www.suse.com/security/cve/CVE-2014-9297"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9297",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 948963 for CVE-2014-9297",
"url": "https://bugzilla.suse.com/948963"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9297",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-07-21T14:05:24Z",
"details": "important"
}
],
"title": "CVE-2014-9297"
},
{
"cve": "CVE-2014-9298",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9298"
}
],
"notes": [
{
"category": "general",
"text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-9750, CVE-2014-9751. Reason: this ID was intended for one issue, but was associated with two issues. Notes: All CVE users should consult CVE-2014-9750 and CVE-2014-9751 to identify the ID or IDs of interest. All references and descriptions in this candidate have been removed to prevent accidental usage",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9298",
"url": "https://www.suse.com/security/cve/CVE-2014-9298"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9298",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 948963 for CVE-2014-9298",
"url": "https://bugzilla.suse.com/948963"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9298",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-07-21T14:05:24Z",
"details": "important"
}
],
"title": "CVE-2014-9298"
},
{
"cve": "CVE-2015-1799",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1799"
}
],
"notes": [
{
"category": "general",
"text": "The symmetric-key feature in the receive function in ntp_proto.c in ntpd in NTP 3.x and 4.x before 4.2.8p2 performs state-variable updates upon receiving certain invalid packets, which makes it easier for man-in-the-middle attackers to cause a denial of service (synchronization loss) by spoofing the source IP address of a peer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1799",
"url": "https://www.suse.com/security/cve/CVE-2015-1799"
},
{
"category": "external",
"summary": "SUSE Bug 924202 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/924202"
},
{
"category": "external",
"summary": "SUSE Bug 927497 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/927497"
},
{
"category": "external",
"summary": "SUSE Bug 928321 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/928321"
},
{
"category": "external",
"summary": "SUSE Bug 936327 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/936327"
},
{
"category": "external",
"summary": "SUSE Bug 943565 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/943565"
},
{
"category": "external",
"summary": "SUSE Bug 957163 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/957163"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/959243"
},
{
"category": "external",
"summary": "SUSE Bug 962624 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/962624"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-07-21T14:05:24Z",
"details": "important"
}
],
"title": "CVE-2015-1799"
},
{
"cve": "CVE-2015-3405",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3405"
}
],
"notes": [
{
"category": "general",
"text": "ntp-keygen in ntp 4.2.8px before 4.2.8p2-RC2 and 4.3.x before 4.3.12 does not generate MD5 keys with sufficient entropy on big endian machines when the lowest order byte of the temp variable is between 0x20 and 0x7f and not #, which might allow remote attackers to obtain the value of generated MD5 keys via a brute force attack with the 93 possible keys.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3405",
"url": "https://www.suse.com/security/cve/CVE-2015-3405"
},
{
"category": "external",
"summary": "SUSE Bug 924202 for CVE-2015-3405",
"url": "https://bugzilla.suse.com/924202"
},
{
"category": "external",
"summary": "SUSE Bug 928321 for CVE-2015-3405",
"url": "https://bugzilla.suse.com/928321"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-LTSS:ntp-doc-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-4.2.4p8-1.24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.i586",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.s390x",
"SUSE Linux Enterprise Server 11 SP1-TERADATA:ntp-doc-4.2.4p8-1.24.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-07-21T14:05:24Z",
"details": "important"
}
],
"title": "CVE-2015-3405"
}
]
}
SUSE-SU-2015:0274-1
Vulnerability from csaf_suse - Published: 2015-02-10 07:37 - Updated: 2015-02-10 07:37Summary
Security update for ntp
Severity
Important
Notes
Title of the patch: Security update for ntp
Description of the patch: ntp was updated to fix four security issues.
These security issues were fixed:
- CVE-2014-9294: util/ntp-keygen.c in ntp-keygen used a weak RNG seed, which made it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack (bnc#910764 911792).
- CVE-2014-9293: The config_auth function in ntpd, when an auth key was not configured, improperly generated a key, which made it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack (bnc#910764 911792).
- CVE-2014-9298: ::1 can be spoofed on some OSes, so ACLs based on IPv6 ::1 addresses could be bypassed (bnc#911792).
- CVE-2014-9297: Information leak by not properly checking a length in several places in ntp_crypto.c (bnc#911792).
Patchnames: SUSE-SLE-DESKTOP-12-2015-70,SUSE-SLE-SERVER-12-2015-70
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 12:ntp-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12:ntp-doc-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 12:ntp-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12:ntp-doc-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 12:ntp-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12:ntp-doc-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 12:ntp-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 12:ntp-doc-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
28 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for ntp",
"title": "Title of the patch"
},
{
"category": "description",
"text": "ntp was updated to fix four security issues.\n\nThese security issues were fixed:\n- CVE-2014-9294: util/ntp-keygen.c in ntp-keygen used a weak RNG seed, which made it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack (bnc#910764 911792).\n- CVE-2014-9293: The config_auth function in ntpd, when an auth key was not configured, improperly generated a key, which made it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack (bnc#910764 911792).\n- CVE-2014-9298: ::1 can be spoofed on some OSes, so ACLs based on IPv6 ::1 addresses could be bypassed (bnc#911792).\n- CVE-2014-9297: Information leak by not properly checking a length in several places in ntp_crypto.c (bnc#911792).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-DESKTOP-12-2015-70,SUSE-SLE-SERVER-12-2015-70",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_0274-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2015:0274-1",
"url": "https://www.suse.com/support/update/announcement/2015/suse-su-20150274-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2015:0274-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2015-February/001220.html"
},
{
"category": "self",
"summary": "SUSE Bug 910764",
"url": "https://bugzilla.suse.com/910764"
},
{
"category": "self",
"summary": "SUSE Bug 911792",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9293 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9293/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9294 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9294/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9297 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9298 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9298/"
}
],
"title": "Security update for ntp",
"tracking": {
"current_release_date": "2015-02-10T07:37:15Z",
"generator": {
"date": "2015-02-10T07:37:15Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2015:0274-1",
"initial_release_date": "2015-02-10T07:37:15Z",
"revision_history": [
{
"date": "2015-02-10T07:37:15Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "ntp-4.2.6p5-37.2.ppc64le",
"product": {
"name": "ntp-4.2.6p5-37.2.ppc64le",
"product_id": "ntp-4.2.6p5-37.2.ppc64le"
}
},
{
"category": "product_version",
"name": "ntp-doc-4.2.6p5-37.2.ppc64le",
"product": {
"name": "ntp-doc-4.2.6p5-37.2.ppc64le",
"product_id": "ntp-doc-4.2.6p5-37.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "ntp-4.2.6p5-37.2.s390x",
"product": {
"name": "ntp-4.2.6p5-37.2.s390x",
"product_id": "ntp-4.2.6p5-37.2.s390x"
}
},
{
"category": "product_version",
"name": "ntp-doc-4.2.6p5-37.2.s390x",
"product": {
"name": "ntp-doc-4.2.6p5-37.2.s390x",
"product_id": "ntp-doc-4.2.6p5-37.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ntp-4.2.6p5-37.2.x86_64",
"product": {
"name": "ntp-4.2.6p5-37.2.x86_64",
"product_id": "ntp-4.2.6p5-37.2.x86_64"
}
},
{
"category": "product_version",
"name": "ntp-doc-4.2.6p5-37.2.x86_64",
"product": {
"name": "ntp-doc-4.2.6p5-37.2.x86_64",
"product_id": "ntp-doc-4.2.6p5-37.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Desktop 12",
"product": {
"name": "SUSE Linux Enterprise Desktop 12",
"product_id": "SUSE Linux Enterprise Desktop 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sled:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12",
"product": {
"name": "SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.6p5-37.2.x86_64 as component of SUSE Linux Enterprise Desktop 12",
"product_id": "SUSE Linux Enterprise Desktop 12:ntp-4.2.6p5-37.2.x86_64"
},
"product_reference": "ntp-4.2.6p5-37.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.6p5-37.2.x86_64 as component of SUSE Linux Enterprise Desktop 12",
"product_id": "SUSE Linux Enterprise Desktop 12:ntp-doc-4.2.6p5-37.2.x86_64"
},
"product_reference": "ntp-doc-4.2.6p5-37.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.6p5-37.2.ppc64le as component of SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.ppc64le"
},
"product_reference": "ntp-4.2.6p5-37.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.6p5-37.2.s390x as component of SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.s390x"
},
"product_reference": "ntp-4.2.6p5-37.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.6p5-37.2.x86_64 as component of SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.x86_64"
},
"product_reference": "ntp-4.2.6p5-37.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.6p5-37.2.ppc64le as component of SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.ppc64le"
},
"product_reference": "ntp-doc-4.2.6p5-37.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.6p5-37.2.s390x as component of SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.s390x"
},
"product_reference": "ntp-doc-4.2.6p5-37.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.6p5-37.2.x86_64 as component of SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.x86_64"
},
"product_reference": "ntp-doc-4.2.6p5-37.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.6p5-37.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.ppc64le"
},
"product_reference": "ntp-4.2.6p5-37.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.6p5-37.2.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.s390x"
},
"product_reference": "ntp-4.2.6p5-37.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.6p5-37.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.x86_64"
},
"product_reference": "ntp-4.2.6p5-37.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.6p5-37.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.ppc64le"
},
"product_reference": "ntp-doc-4.2.6p5-37.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.6p5-37.2.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.s390x"
},
"product_reference": "ntp-doc-4.2.6p5-37.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.6p5-37.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.x86_64"
},
"product_reference": "ntp-doc-4.2.6p5-37.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-9293",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9293"
}
],
"notes": [
{
"category": "general",
"text": "The config_auth function in ntpd in NTP before 4.2.7p11, when an auth key is not configured, improperly generates a key, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Desktop 12:ntp-doc-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9293",
"url": "https://www.suse.com/security/cve/CVE-2014-9293"
},
{
"category": "external",
"summary": "SUSE Bug 910764 for CVE-2014-9293",
"url": "https://bugzilla.suse.com/910764"
},
{
"category": "external",
"summary": "SUSE Bug 911053 for CVE-2014-9293",
"url": "https://bugzilla.suse.com/911053"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9293",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9293",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Desktop 12:ntp-doc-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-02-10T07:37:15Z",
"details": "important"
}
],
"title": "CVE-2014-9293"
},
{
"cve": "CVE-2014-9294",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9294"
}
],
"notes": [
{
"category": "general",
"text": "util/ntp-keygen.c in ntp-keygen in NTP before 4.2.7p230 uses a weak RNG seed, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Desktop 12:ntp-doc-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9294",
"url": "https://www.suse.com/security/cve/CVE-2014-9294"
},
{
"category": "external",
"summary": "SUSE Bug 910764 for CVE-2014-9294",
"url": "https://bugzilla.suse.com/910764"
},
{
"category": "external",
"summary": "SUSE Bug 911053 for CVE-2014-9294",
"url": "https://bugzilla.suse.com/911053"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9294",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9294",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Desktop 12:ntp-doc-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-02-10T07:37:15Z",
"details": "important"
}
],
"title": "CVE-2014-9294"
},
{
"cve": "CVE-2014-9297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9297"
}
],
"notes": [
{
"category": "general",
"text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-9750, CVE-2014-9751. Reason: this ID was intended for one issue, but was associated with two issues. Notes: All CVE users should consult CVE-2014-9750 and CVE-2014-9751 to identify the ID or IDs of interest. All references and descriptions in this candidate have been removed to prevent accidental usage",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Desktop 12:ntp-doc-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9297",
"url": "https://www.suse.com/security/cve/CVE-2014-9297"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9297",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 948963 for CVE-2014-9297",
"url": "https://bugzilla.suse.com/948963"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9297",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Desktop 12:ntp-doc-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-02-10T07:37:15Z",
"details": "important"
}
],
"title": "CVE-2014-9297"
},
{
"cve": "CVE-2014-9298",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9298"
}
],
"notes": [
{
"category": "general",
"text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-9750, CVE-2014-9751. Reason: this ID was intended for one issue, but was associated with two issues. Notes: All CVE users should consult CVE-2014-9750 and CVE-2014-9751 to identify the ID or IDs of interest. All references and descriptions in this candidate have been removed to prevent accidental usage",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Desktop 12:ntp-doc-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9298",
"url": "https://www.suse.com/security/cve/CVE-2014-9298"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9298",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 948963 for CVE-2014-9298",
"url": "https://bugzilla.suse.com/948963"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9298",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Desktop 12:ntp-doc-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server 12:ntp-doc-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-4.2.6p5-37.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:ntp-doc-4.2.6p5-37.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2015-02-10T07:37:15Z",
"details": "important"
}
],
"title": "CVE-2014-9298"
}
]
}
SUSE-SU-2015:1173-1
Vulnerability from csaf_suse - Published: 2014-11-18 12:31 - Updated: 2014-11-18 12:31Summary
Recommended update for ntp
Severity
Moderate
Notes
Title of the patch: Recommended update for ntp
Description of the patch:
This update for ntp provides the following fixes:
* Respect NTPD_FORCE_SYNC_ON_STARTUP also for dynamic peers.
(bnc#887957)
* Fix orphan mode. (bnc#883859)
Patchnames: sledsp3-ntp,slessp3-ntp
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
34 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
34 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
34 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
34 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
34 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
34 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
34 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
34 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
61 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Recommended update for ntp",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThis update for ntp provides the following fixes:\n\n * Respect NTPD_FORCE_SYNC_ON_STARTUP also for dynamic peers.\n (bnc#887957)\n * Fix orphan mode. (bnc#883859)\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "sledsp3-ntp,slessp3-ntp",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_1173-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2015:1173-1",
"url": "https://www.suse.com/support/update/announcement/2015/suse-su-20151173-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2015:1173-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2015-July/001470.html"
},
{
"category": "self",
"summary": "SUSE Bug 838458",
"url": "https://bugzilla.suse.com/838458"
},
{
"category": "self",
"summary": "SUSE Bug 857195",
"url": "https://bugzilla.suse.com/857195"
},
{
"category": "self",
"summary": "SUSE Bug 883859",
"url": "https://bugzilla.suse.com/883859"
},
{
"category": "self",
"summary": "SUSE Bug 887957",
"url": "https://bugzilla.suse.com/887957"
},
{
"category": "self",
"summary": "SUSE Bug 910764",
"url": "https://bugzilla.suse.com/910764"
},
{
"category": "self",
"summary": "SUSE Bug 911792",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "self",
"summary": "SUSE Bug 924202",
"url": "https://bugzilla.suse.com/924202"
},
{
"category": "self",
"summary": "SUSE Bug 928321",
"url": "https://bugzilla.suse.com/928321"
},
{
"category": "self",
"summary": "SUSE Bug 935409",
"url": "https://bugzilla.suse.com/935409"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-5211 page",
"url": "https://www.suse.com/security/cve/CVE-2013-5211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9293 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9293/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9294 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9294/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9295 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9295/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9297 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9298 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9298/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-1799 page",
"url": "https://www.suse.com/security/cve/CVE-2015-1799/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3405 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3405/"
}
],
"title": "Recommended update for ntp",
"tracking": {
"current_release_date": "2014-11-18T12:31:05Z",
"generator": {
"date": "2014-11-18T12:31:05Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2015:1173-1",
"initial_release_date": "2014-11-18T12:31:05Z",
"revision_history": [
{
"date": "2014-11-18T12:31:05Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "ntp-4.2.4p8-1.26.1.i586",
"product": {
"name": "ntp-4.2.4p8-1.26.1.i586",
"product_id": "ntp-4.2.4p8-1.26.1.i586"
}
},
{
"category": "product_version",
"name": "ntp-doc-4.2.4p8-1.26.1.i586",
"product": {
"name": "ntp-doc-4.2.4p8-1.26.1.i586",
"product_id": "ntp-doc-4.2.4p8-1.26.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "ntp-4.2.4p8-1.26.1.ia64",
"product": {
"name": "ntp-4.2.4p8-1.26.1.ia64",
"product_id": "ntp-4.2.4p8-1.26.1.ia64"
}
},
{
"category": "product_version",
"name": "ntp-doc-4.2.4p8-1.26.1.ia64",
"product": {
"name": "ntp-doc-4.2.4p8-1.26.1.ia64",
"product_id": "ntp-doc-4.2.4p8-1.26.1.ia64"
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "ntp-4.2.4p8-1.26.1.ppc64",
"product": {
"name": "ntp-4.2.4p8-1.26.1.ppc64",
"product_id": "ntp-4.2.4p8-1.26.1.ppc64"
}
},
{
"category": "product_version",
"name": "ntp-doc-4.2.4p8-1.26.1.ppc64",
"product": {
"name": "ntp-doc-4.2.4p8-1.26.1.ppc64",
"product_id": "ntp-doc-4.2.4p8-1.26.1.ppc64"
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "ntp-4.2.4p8-1.26.1.s390x",
"product": {
"name": "ntp-4.2.4p8-1.26.1.s390x",
"product_id": "ntp-4.2.4p8-1.26.1.s390x"
}
},
{
"category": "product_version",
"name": "ntp-doc-4.2.4p8-1.26.1.s390x",
"product": {
"name": "ntp-doc-4.2.4p8-1.26.1.s390x",
"product_id": "ntp-doc-4.2.4p8-1.26.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ntp-4.2.4p8-1.26.1.x86_64",
"product": {
"name": "ntp-4.2.4p8-1.26.1.x86_64",
"product_id": "ntp-4.2.4p8-1.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "ntp-doc-4.2.4p8-1.26.1.x86_64",
"product": {
"name": "ntp-doc-4.2.4p8-1.26.1.x86_64",
"product_id": "ntp-doc-4.2.4p8-1.26.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Desktop 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sled:11:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sles:11:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:11:sp3:teradata"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:11:sp3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.i586 as component of SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586"
},
"product_reference": "ntp-4.2.4p8-1.26.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.x86_64 as component of SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64"
},
"product_reference": "ntp-4.2.4p8-1.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.i586 as component of SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.x86_64 as component of SUSE Linux Enterprise Desktop 11 SP3",
"product_id": "SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.i586 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586"
},
"product_reference": "ntp-4.2.4p8-1.26.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64"
},
"product_reference": "ntp-4.2.4p8-1.26.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64"
},
"product_reference": "ntp-4.2.4p8-1.26.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.s390x as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x"
},
"product_reference": "ntp-4.2.4p8-1.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64"
},
"product_reference": "ntp-4.2.4p8-1.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.i586 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.s390x as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3",
"product_id": "SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586"
},
"product_reference": "ntp-4.2.4p8-1.26.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64"
},
"product_reference": "ntp-4.2.4p8-1.26.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64"
},
"product_reference": "ntp-4.2.4p8-1.26.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x"
},
"product_reference": "ntp-4.2.4p8-1.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64"
},
"product_reference": "ntp-4.2.4p8-1.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586"
},
"product_reference": "ntp-4.2.4p8-1.26.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64"
},
"product_reference": "ntp-4.2.4p8-1.26.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64"
},
"product_reference": "ntp-4.2.4p8-1.26.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x"
},
"product_reference": "ntp-4.2.4p8-1.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-4.2.4p8-1.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64"
},
"product_reference": "ntp-4.2.4p8-1.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-4.2.4p8-1.26.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
},
"product_reference": "ntp-doc-4.2.4p8-1.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2013-5211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-5211"
}
],
"notes": [
{
"category": "general",
"text": "The monlist feature in ntp_request.c in ntpd in NTP before 4.2.7p26 allows remote attackers to cause a denial of service (traffic amplification) via forged (1) REQ_MON_GETLIST or (2) REQ_MON_GETLIST_1 requests, as exploited in the wild in December 2013.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-5211",
"url": "https://www.suse.com/security/cve/CVE-2013-5211"
},
{
"category": "external",
"summary": "SUSE Bug 857195 for CVE-2013-5211",
"url": "https://bugzilla.suse.com/857195"
},
{
"category": "external",
"summary": "SUSE Bug 889447 for CVE-2013-5211",
"url": "https://bugzilla.suse.com/889447"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2013-5211",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-11-18T12:31:05Z",
"details": "moderate"
}
],
"title": "CVE-2013-5211"
},
{
"cve": "CVE-2014-9293",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9293"
}
],
"notes": [
{
"category": "general",
"text": "The config_auth function in ntpd in NTP before 4.2.7p11, when an auth key is not configured, improperly generates a key, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9293",
"url": "https://www.suse.com/security/cve/CVE-2014-9293"
},
{
"category": "external",
"summary": "SUSE Bug 910764 for CVE-2014-9293",
"url": "https://bugzilla.suse.com/910764"
},
{
"category": "external",
"summary": "SUSE Bug 911053 for CVE-2014-9293",
"url": "https://bugzilla.suse.com/911053"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9293",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9293",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-11-18T12:31:05Z",
"details": "important"
}
],
"title": "CVE-2014-9293"
},
{
"cve": "CVE-2014-9294",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9294"
}
],
"notes": [
{
"category": "general",
"text": "util/ntp-keygen.c in ntp-keygen in NTP before 4.2.7p230 uses a weak RNG seed, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9294",
"url": "https://www.suse.com/security/cve/CVE-2014-9294"
},
{
"category": "external",
"summary": "SUSE Bug 910764 for CVE-2014-9294",
"url": "https://bugzilla.suse.com/910764"
},
{
"category": "external",
"summary": "SUSE Bug 911053 for CVE-2014-9294",
"url": "https://bugzilla.suse.com/911053"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9294",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9294",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-11-18T12:31:05Z",
"details": "important"
}
],
"title": "CVE-2014-9294"
},
{
"cve": "CVE-2014-9295",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9295"
}
],
"notes": [
{
"category": "general",
"text": "Multiple stack-based buffer overflows in ntpd in NTP before 4.2.8 allow remote attackers to execute arbitrary code via a crafted packet, related to (1) the crypto_recv function when the Autokey Authentication feature is used, (2) the ctl_putdata function, and (3) the configure function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9295",
"url": "https://www.suse.com/security/cve/CVE-2014-9295"
},
{
"category": "external",
"summary": "SUSE Bug 910764 for CVE-2014-9295",
"url": "https://bugzilla.suse.com/910764"
},
{
"category": "external",
"summary": "SUSE Bug 911053 for CVE-2014-9295",
"url": "https://bugzilla.suse.com/911053"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9295",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 916239 for CVE-2014-9295",
"url": "https://bugzilla.suse.com/916239"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9295",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-11-18T12:31:05Z",
"details": "important"
}
],
"title": "CVE-2014-9295"
},
{
"cve": "CVE-2014-9297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9297"
}
],
"notes": [
{
"category": "general",
"text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-9750, CVE-2014-9751. Reason: this ID was intended for one issue, but was associated with two issues. Notes: All CVE users should consult CVE-2014-9750 and CVE-2014-9751 to identify the ID or IDs of interest. All references and descriptions in this candidate have been removed to prevent accidental usage",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9297",
"url": "https://www.suse.com/security/cve/CVE-2014-9297"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9297",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 948963 for CVE-2014-9297",
"url": "https://bugzilla.suse.com/948963"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9297",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-11-18T12:31:05Z",
"details": "important"
}
],
"title": "CVE-2014-9297"
},
{
"cve": "CVE-2014-9298",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9298"
}
],
"notes": [
{
"category": "general",
"text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-9750, CVE-2014-9751. Reason: this ID was intended for one issue, but was associated with two issues. Notes: All CVE users should consult CVE-2014-9750 and CVE-2014-9751 to identify the ID or IDs of interest. All references and descriptions in this candidate have been removed to prevent accidental usage",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9298",
"url": "https://www.suse.com/security/cve/CVE-2014-9298"
},
{
"category": "external",
"summary": "SUSE Bug 911792 for CVE-2014-9298",
"url": "https://bugzilla.suse.com/911792"
},
{
"category": "external",
"summary": "SUSE Bug 948963 for CVE-2014-9298",
"url": "https://bugzilla.suse.com/948963"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2014-9298",
"url": "https://bugzilla.suse.com/959243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-11-18T12:31:05Z",
"details": "important"
}
],
"title": "CVE-2014-9298"
},
{
"cve": "CVE-2015-1799",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-1799"
}
],
"notes": [
{
"category": "general",
"text": "The symmetric-key feature in the receive function in ntp_proto.c in ntpd in NTP 3.x and 4.x before 4.2.8p2 performs state-variable updates upon receiving certain invalid packets, which makes it easier for man-in-the-middle attackers to cause a denial of service (synchronization loss) by spoofing the source IP address of a peer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-1799",
"url": "https://www.suse.com/security/cve/CVE-2015-1799"
},
{
"category": "external",
"summary": "SUSE Bug 924202 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/924202"
},
{
"category": "external",
"summary": "SUSE Bug 927497 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/927497"
},
{
"category": "external",
"summary": "SUSE Bug 928321 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/928321"
},
{
"category": "external",
"summary": "SUSE Bug 936327 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/936327"
},
{
"category": "external",
"summary": "SUSE Bug 943565 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/943565"
},
{
"category": "external",
"summary": "SUSE Bug 957163 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/957163"
},
{
"category": "external",
"summary": "SUSE Bug 959243 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/959243"
},
{
"category": "external",
"summary": "SUSE Bug 962624 for CVE-2015-1799",
"url": "https://bugzilla.suse.com/962624"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-11-18T12:31:05Z",
"details": "important"
}
],
"title": "CVE-2015-1799"
},
{
"cve": "CVE-2015-3405",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3405"
}
],
"notes": [
{
"category": "general",
"text": "ntp-keygen in ntp 4.2.8px before 4.2.8p2-RC2 and 4.3.x before 4.3.12 does not generate MD5 keys with sufficient entropy on big endian machines when the lowest order byte of the temp variable is between 0x20 and 0x7f and not #, which might allow remote attackers to obtain the value of generated MD5 keys via a brute force attack with the 93 possible keys.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3405",
"url": "https://www.suse.com/security/cve/CVE-2015-3405"
},
{
"category": "external",
"summary": "SUSE Bug 924202 for CVE-2015-3405",
"url": "https://bugzilla.suse.com/924202"
},
{
"category": "external",
"summary": "SUSE Bug 928321 for CVE-2015-3405",
"url": "https://bugzilla.suse.com/928321"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Desktop 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-4.2.4p8-1.26.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP3:ntp-doc-4.2.4p8-1.26.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2014-11-18T12:31:05Z",
"details": "important"
}
],
"title": "CVE-2015-3405"
}
]
}
VAR-201412-0615
Vulnerability from variot - Updated: 2026-03-09 21:29The config_auth function in ntpd in NTP before 4.2.7p11, when an auth key is not configured, improperly generates a key, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack. The NTP Project ntpd version 4.2.7 and pervious versions contain several vulnerabilities. ntp-keygen prior to version 4.2.7p230 also uses a non-cryptographic random number generator when generating symmetric keys. These vulnerabilities may affect ntpd acting as a server or client. Network Time Protocol is prone to multiple stack-based buffer-overflow vulnerabilities because it fails to properly bounds-check user-supplied data before copying it into an insufficiently sized buffer. Successful exploits may allow an attacker to execute arbitrary code with the privileges of the ntpd process. Failed attempts will likely cause a denial-of-service condition. Network Time Protocol 4.2.7 and prior are vulnerable. NTP is prone to a predictable random number generator weakness. An attacker can exploit this issue to guess generated MD5 keys that could then be used to spoof an NTP client or server. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
===================================================================== Red Hat Security Advisory
Synopsis: Important: ntp security update Advisory ID: RHSA-2015:0104-01 Product: Red Hat Enterprise Linux Advisory URL: https://rhn.redhat.com/errata/RHSA-2015-0104.html Issue date: 2015-01-28 CVE Names: CVE-2014-9293 CVE-2014-9294 CVE-2014-9295 CVE-2014-9296 =====================================================================
- Summary:
Updated ntp packages that fix several security issues are now available for Red Hat Enterprise Linux 6.5 Extended Update Support.
Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.
- Relevant releases/architectures:
Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5) - noarch, x86_64 Red Hat Enterprise Linux HPC Node EUS (v. 6.5) - x86_64 Red Hat Enterprise Linux Server EUS (v. 6.5) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional EUS (v. 6.5) - i386, noarch, ppc64, s390x, x86_64
Multiple buffer overflow flaws were discovered in ntpd's crypto_recv(), ctl_putdata(), and configure() functions. Note: the crypto_recv() flaw requires non-default configurations to be active, while the ctl_putdata() flaw, by default, can only be exploited via local attackers, and the configure() flaw requires additional authentication to exploit. (CVE-2014-9295)
It was found that ntpd automatically generated weak keys for its internal use if no ntpdc request authentication key was specified in the ntp.conf configuration file. A remote attacker able to match the configured IP restrictions could guess the generated key, and possibly use it to send ntpdc query or configuration requests. (CVE-2014-9293)
It was found that ntp-keygen used a weak method for generating MD5 keys. Note: it is recommended to regenerate any MD5 keys that had explicitly been generated with ntp-keygen; the default installation does not contain such keys. (CVE-2014-9294)
A missing return statement in the receive() function could potentially allow a remote attacker to bypass NTP's authentication mechanism. (CVE-2014-9296)
All ntp users are advised to upgrade to this updated package, which contains backported patches to resolve these issues. After installing the update, the ntpd daemon will restart automatically.
- Solution:
Before applying this update, make sure all previously released errata relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/articles/11258
- Bugs fixed (https://bugzilla.redhat.com/):
1176032 - CVE-2014-9293 ntp: automatic generation of weak default key in config_auth() 1176035 - CVE-2014-9294 ntp: ntp-keygen uses weak random number generator and seed when generating MD5 keys 1176037 - CVE-2014-9295 ntp: Multiple buffer overflows via specially-crafted packets 1176040 - CVE-2014-9296 ntp: receive() missing return on error
- Package List:
Red Hat Enterprise Linux HPC Node EUS (v. 6.5):
Source: ntp-4.2.6p5-2.el6_5.src.rpm
x86_64: ntp-4.2.6p5-2.el6_5.x86_64.rpm ntp-debuginfo-4.2.6p5-2.el6_5.x86_64.rpm ntpdate-4.2.6p5-2.el6_5.x86_64.rpm
Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5):
Source: ntp-4.2.6p5-2.el6_5.src.rpm
noarch: ntp-doc-4.2.6p5-2.el6_5.noarch.rpm
x86_64: ntp-debuginfo-4.2.6p5-2.el6_5.x86_64.rpm ntp-perl-4.2.6p5-2.el6_5.x86_64.rpm
Red Hat Enterprise Linux Server EUS (v. 6.5):
Source: ntp-4.2.6p5-2.el6_5.src.rpm
i386: ntp-4.2.6p5-2.el6_5.i686.rpm ntp-debuginfo-4.2.6p5-2.el6_5.i686.rpm ntpdate-4.2.6p5-2.el6_5.i686.rpm
ppc64: ntp-4.2.6p5-2.el6_5.ppc64.rpm ntp-debuginfo-4.2.6p5-2.el6_5.ppc64.rpm ntpdate-4.2.6p5-2.el6_5.ppc64.rpm
s390x: ntp-4.2.6p5-2.el6_5.s390x.rpm ntp-debuginfo-4.2.6p5-2.el6_5.s390x.rpm ntpdate-4.2.6p5-2.el6_5.s390x.rpm
x86_64: ntp-4.2.6p5-2.el6_5.x86_64.rpm ntp-debuginfo-4.2.6p5-2.el6_5.x86_64.rpm ntpdate-4.2.6p5-2.el6_5.x86_64.rpm
Red Hat Enterprise Linux Server Optional EUS (v. 6.5):
Source: ntp-4.2.6p5-2.el6_5.src.rpm
i386: ntp-debuginfo-4.2.6p5-2.el6_5.i686.rpm ntp-perl-4.2.6p5-2.el6_5.i686.rpm
noarch: ntp-doc-4.2.6p5-2.el6_5.noarch.rpm
ppc64: ntp-debuginfo-4.2.6p5-2.el6_5.ppc64.rpm ntp-perl-4.2.6p5-2.el6_5.ppc64.rpm
s390x: ntp-debuginfo-4.2.6p5-2.el6_5.s390x.rpm ntp-perl-4.2.6p5-2.el6_5.s390x.rpm
x86_64: ntp-debuginfo-4.2.6p5-2.el6_5.x86_64.rpm ntp-perl-4.2.6p5-2.el6_5.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/
- References:
https://access.redhat.com/security/cve/CVE-2014-9293 https://access.redhat.com/security/cve/CVE-2014-9294 https://access.redhat.com/security/cve/CVE-2014-9295 https://access.redhat.com/security/cve/CVE-2014-9296 https://access.redhat.com/security/updates/classification/#important
- Contact:
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/
Copyright 2015 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1
iD8DBQFUyTXWXlSAg2UNWIIRAsXzAKCilJuJeeWLOABs1xY+ueRvRTSpWACcDhoC YQlhn66RRMYQCWymo1OCUoI= =4Rft -----END PGP SIGNATURE-----
-- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce .
Release Date: 2015-02-18 Last Updated: 2015-02-18
Potential Security Impact: Remote execution of code, Denial of Service (DoS), or other vulnerabilities
Source: Hewlett-Packard Company, HP Software Security Response Team
VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with HP-UX running NTP. These could be exploited remotely to execute code, create a Denial of Service (DoS), or other vulnerabilities.
References:
CVE-2014-9293 - Insufficient Entropy in Pseudo-Random Number Generator (PRNG) (CWE-332) CVE-2014-9294 - Use of Cryptographically Weak PRNG (CWE-338) CVE-2014-9295 - Stack Buffer Overflow (CWE-121) CVE-2014-9296 - Error Conditions, Return Values, Status Codes (CWE-389) CVE-2014-9297 - Improper Check for Unusual or Exceptional Conditions (CWE-754) SSRT101872 VU#852879
SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed.
HP-UX B.11.31 running NTP version C.4.2.6.4.0 or previous HP-UX B.11.23 running XNTP version 3.5 or previous
BACKGROUND
CVSS 2.0 Base Metrics
Reference Base Vector Base Score CVE-2014-9293 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2014-9294 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2014-9295 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2014-9296 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2014-9297 (AV:N/AC:H/Au:N/C:P/I:N/A:N) 2.6 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002
RESOLUTION
HP has provided the following patch for HP-UX B.11.31. A workaround for HP-UX B.11.23 and B.11.11 to temporarily resolve these vulnerabilities follows below.
The B.11.31 patch is available from: ftp://ntp42650:Secure12@h2.usa.hp.com or https://h20392.www2.hp.com/portal/sw depot/displayProductInfo.do?productNumber=HPUX-NTP
Mitigation steps for HP-UX B.11.23 and B.11.11 for CVE-2014-9295
Restrict query for server status (Time Service is not affected) from ntpq/ntpdc by enabling .noquery. using the restrict command in /etc/ntp.conf file.
Reference: http://support.ntp.org/bin/view/Main/SecurityNotice
NOTE: This bulletin will be revised when patches for XNTP v3.5 on B.11.23 and B.11.11 become available.
MANUAL ACTIONS: No
PRODUCT SPECIFIC INFORMATION
HP-UX Software Assistant: HP-UX Software Assistant is an enhanced application that replaces HP-UX Security Patch Check. It analyzes all Security Bulletins issued by HP and lists recommended actions that may apply to a specific HP-UX system. It can also download patches and create a depot automatically. For more information see: https://www.hp.com/go/swa
The following text is for use by the HP-UX Software Assistant.
AFFECTED VERSIONS
HP-UX B.11.31
NTP.INETSVCS2-BOOT NTP.NTP-AUX NTP.NTP-RUN action: install revision C.4.2.6.5.0 or subsequent
END AFFECTED VERSIONS
HISTORY Version:1 (rev.1) - 18 February 2015 Initial release
Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.
Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com.
Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com
Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins
Security Bulletin Archive: A list of recently released Security Bulletins is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/
Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB.
3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX
Copyright 2015 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits; damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners.
The two patches are available from the HP Support Center (HPSC).
Reference: http://support.ntp.org/bin/view/Main/SecurityNotice
MANUAL ACTIONS: Yes - Update
If patch installation on B.11.11 or B.11.23 is not possible, mitigate with step above.
A remote unauthenticated attacker may craft special packets that trigger buffer overflows in the ntpd functions crypto_recv() (when using autokey authentication), ctl_putdata(), and configure().
A section of code in ntpd handling a rare error is missing a return statement, therefore processing did not stop when the error was encountered. This situation may be exploitable by an attacker (CVE-2014-9296).
Stephen Roettger of the Google Security Team, Sebastian Krahmer of the SUSE Security Team and Harlan Stenn of Network Time Foundation discovered that the length value in extension fields is not properly validated in several code paths in ntp_crypto.c, which could lead to information leakage or denial of service (CVE-2014-9297).
Stephen Roettger of the Google Security Team reported that ACLs based on IPv6 ::1 (localhost) addresses can be bypassed (CVE-2014-9298).
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9293 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9294 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9295 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9296 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9297 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9298 http://advisories.mageia.org/MGASA-2014-0541.html http://advisories.mageia.org/MGASA-2015-0063.html
Updated Packages:
Mandriva Business Server 2/X86_64: 8f7d14b95c55bd1de7230cff0c8ea9d7 mbs2/x86_64/ntp-4.2.6p5-16.1.mbs2.x86_64.rpm 09063ab11459b1f935809b37c742ff12 mbs2/x86_64/ntp-client-4.2.6p5-16.1.mbs2.x86_64.rpm 7a0d0eca35911d9f15b76b474c5512cf mbs2/x86_64/ntp-doc-4.2.6p5-16.1.mbs2.noarch.rpm cb0371050702950084ff633ea45c2c5c mbs2/SRPMS/ntp-4.2.6p5-16.1.mbs2.src.rpm
To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.
All packages are signed by Mandriva for security. Attackers could use this key to reconfigure ntpd (or to exploit other vulnerabilities).
The default ntpd configuration in Debian restricts access to localhost (and possible the adjacent network in case of IPv6).
For the stable distribution (wheezy), these problems have been fixed in version 1:4.2.6.p5+dfsg-2+deb7u1.
Here are the details from the Slackware 14.1 ChangeLog: +--------------------------+ patches/packages/ntp-4.2.8-i486-1_slack14.1.txz: Upgraded. In addition to bug fixes and enhancements, this release fixes several high-severity vulnerabilities discovered by Neel Mehta and Stephen Roettger of the Google Security Team. For more information, see: https://www.kb.cert.org/vuls/id/852879 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9293 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9294 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9295 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9296 ( Security fix ) +--------------------------+
Where to find the new packages: +-----------------------------+
Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://slackware.com for additional mirror sites near you.
Updated package for Slackware 13.0: ftp://ftp.slackware.com/pub/slackware/slackware-13.0/patches/packages/ntp-4.2.8-i486-1_slack13.0.txz
Updated package for Slackware x86_64 13.0: ftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/packages/ntp-4.2.8-x86_64-1_slack13.0.txz
Updated package for Slackware 13.1: ftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/ntp-4.2.8-i486-1_slack13.1.txz
Updated package for Slackware x86_64 13.1: ftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/ntp-4.2.8-x86_64-1_slack13.1.txz
Updated package for Slackware 13.37: ftp://ftp.slackware.com/pub/slackware/slackware-13.37/patches/packages/ntp-4.2.8-i486-1_slack13.37.txz
Updated package for Slackware x86_64 13.37: ftp://ftp.slackware.com/pub/slackware/slackware64-13.37/patches/packages/ntp-4.2.8-x86_64-1_slack13.37.txz
Updated package for Slackware 14.0: ftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/ntp-4.2.8-i486-1_slack14.0.txz
Updated package for Slackware x86_64 14.0: ftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/ntp-4.2.8-x86_64-1_slack14.0.txz
Updated package for Slackware 14.1: ftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/ntp-4.2.8-i486-1_slack14.1.txz
Updated package for Slackware x86_64 14.1: ftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/ntp-4.2.8-x86_64-1_slack14.1.txz
Updated package for Slackware -current: ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/ntp-4.2.8-i486-1.txz
Updated package for Slackware x86_64 -current: ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/ntp-4.2.8-x86_64-1.txz
MD5 signatures: +-------------+
Slackware 13.0 package: 18d7f09e90cf2434f59d7e9f11478fba ntp-4.2.8-i486-1_slack13.0.txz
Slackware x86_64 13.0 package: edd178e3d2636433dd18f52331af17a5 ntp-4.2.8-x86_64-1_slack13.0.txz
Slackware 13.1 package: 4b6da6fa564b1fe00920d402ff97bd43 ntp-4.2.8-i486-1_slack13.1.txz
Slackware x86_64 13.1 package: 292ae7dbd3ea593c5e28cbba7c2b71fa ntp-4.2.8-x86_64-1_slack13.1.txz
Slackware 13.37 package: 294b8197d360f9a3cf8186619b60b73c ntp-4.2.8-i486-1_slack13.37.txz
Slackware x86_64 13.37 package: 7cd5b63f8371b1cc369bc56e4b4efd5a ntp-4.2.8-x86_64-1_slack13.37.txz
Slackware 14.0 package: 32eab67538c33e4669bda9200799a497 ntp-4.2.8-i486-1_slack14.0.txz
Slackware x86_64 14.0 package: 33ecf4845fa8533a12a98879815bde08 ntp-4.2.8-x86_64-1_slack14.0.txz
Slackware 14.1 package: f2b45a45c846a909ae201176ce359939 ntp-4.2.8-i486-1_slack14.1.txz
Slackware x86_64 14.1 package: 12d7ab6e2541af4d1282621d3773e7f7 ntp-4.2.8-x86_64-1_slack14.1.txz
Slackware -current package: 5b2150cee9840d8bb547098cccde879a n/ntp-4.2.8-i486-1.txz
Slackware x86_64 -current package: 9ce09c5d6a60d3e2117988e4551e4af1 n/ntp-4.2.8-x86_64-1.txz
Installation instructions: +------------------------+
Upgrade the package as root:
upgradepkg ntp-4.2.8-i486-1_slack14.1.txz
Then, restart the NTP daemon:
sh /etc/rc.d/rc.ntpd restart
+-----+
Slackware Linux Security Team http://slackware.com/gpg-key security@slackware.com
+------------------------------------------------------------------------+ | To leave the slackware-security mailing list: | +------------------------------------------------------------------------+ | Send an email to majordomo@slackware.com with this text in the body of | | the email message: | | | | unsubscribe slackware-security | | | | You will get a confirmation message back containing instructions to | | complete the process. Please do not reply to this email address.
References:
CVE-2014-9293 CVE-2014-9294 CVE-2014-9295 CVE-2014-9296 CVE-2013-5211 SSRT102239
SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed.
Platform Patch Kit Name
Alpha IA64 V8.4 75-117-380_2015-08-24.BCK
NOTE: Please contact OpenVMS Technical Support to request these patch kits. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
ESA-2015-004: EMC M&R (Watch4Net) Multiple Vulnerabilities
EMC Identifier: ESA-2015-004
CVE Identifier: CVE-2015-0513, CVE-2015-0514, CVE-2015-0515, CVE-2015-0516, CVE-2014-4288, CVE-2014-6456, CVE-2014-6457, CVE-2014-6458, CVE-2014-6466, CVE-2014-6468, CVE-2014-6476, CVE-2014-6485, CVE-2014-6492, CVE-2014-6493, CVE-2014-6502, CVE-2014-6503, CVE-2014-6504, CVE-2014-6506, CVE-2014-6511, CVE-2014-6512, CVE-2014-6513, CVE-2014-6515, CVE-2014-6517, CVE-2014-6519, CVE-2014-6527, CVE-2014-6531, CVE-2014-6532, CVE-2014-6558, CVE-2014-6562, CVE-2014-9293, CVE-2014-9294, CVE-2014-9295, CVE-2014-9296, CVE-2014-3618
Severity Rating: CVSS v2 Base Score: View details below for individual CVSS score for each CVE
Affected products:
\x95 EMC M&R (Watch4Net) versions prior 6.5u1
\x95 EMC ViPR SRM versions prior to 3.6.1
Summary: EMC M&R (Watch4Net) is vulnerable to multiple security vulnerabilities that could be potentially exploited by malicious users to compromise the affected system. EMC ViPR SRM is built on EMC M&R platform and is also affected by these vulnerabilities.
Details: The vulnerabilities include: \x95 Multiple Oracle Java Runtime Environment (JRE) Vulnerabilities CVE Identifiers: CVE-2014-4288, CVE-2014-6456, CVE-2014-6457, CVE-2014-6458, CVE-2014-6466, CVE-2014-6468, CVE-2014-6476, CVE-2014-6485, CVE-2014-6492, CVE-2014-6493, CVE-2014-6502, CVE-2014-6503, CVE-2014-6504, CVE-2014-6506, CVE-2014-6511, CVE-2014-6512, CVE-2014-6513, CVE-2014-6515, CVE-2014-6517, CVE-2014-6519, CVE-2014-6527, CVE-2014-6531, CVE-2014-6532, CVE-2014-6558, CVE-2014-6562.
Oracle JRE contains multiple security vulnerabilities. Oracle JRE has been upgraded to 8.0u25 to address these vulnerabilities. See vendor advisory (http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html#AppendixJAVA) for more details.
CVSS v2 Base Score: Please refer to http://nvd.nist.gov/ for the individual CVSS scores for each CVE listed above.
\x95 Multiple Cross-Site Scripting Vulnerabilities
CVE Identifier: CVE-2015-0513
Several user-supplied fields in the administrative user interface may be potentially exploited by an authenticated privileged malicious user to conduct cross-site-scripting attacks on other authenticated users of the system.
CVSS v2 Base Score: 6.5 (AV:N/AC:L/Au:S/C:P/I:P/A:P)
\x95 Insecure Cryptographic Storage Vulnerability CVE Identifier: CVE-2015-0514 A malicious non-ViPR SRM user with access to an installation of ViPR SRM and knowledge of internal encryption methods could potentially decrypt credentials used for data center discovery. CVSS v2 Base Score: 5.7 (AV:A/AC:M/Au:N/C:C/I:N/A:N)
\x95 Unrestricted File Upload Vulnerability CVE Identifier: CVE-2015-0515 This vulnerability may potentially be exploited by an authenticated, privileged malicious user to upload arbitrary files into the file system via the web interface. CVSS v2 Base Score: 6 (AV:N/AC:M/Au:S/C:P/I:P/A:P)
\x95 Path Traversal Vulnerability CVE Identifier: CVE-2015-0516 This vulnerability may potentially be exploited by an authenticated, privileged malicious user to download arbitrary files from the file system via the web interface by manipulating the directory structure in the URL. CVSS v2 Base Score: 6.8 (AV:N/AC:L/Au:S/C:C/I:N/A:N)
\x95 SUSE Procmail Heap Overflow Vulnerability
CVE Identifier: CVE-2014-3618
Procmail was updated to fix a heap-overflow in procmail's formail utility when processing specially-crafted email headers. This issue affects only vApp deployments of the affected software.
CVSS v2 Base Score: Please refer to http://nvd.nist.gov/ for the CVSS score.
\x95 NTP Multiple Vulnerabilities
CVE Identifier: CVE-2014-9293 CVE-2014-9294 CVE-2014-9295 CVE-2014-9296
NTP was updated to fix multiple vulnerabilities. See vendor advisory http://support.ntp.org/bin/view/Main/SecurityNotice for more details. These issues affect only vApp deployments of the affected software.
CVSS v2 Base Score: Please refer to http://nvd.nist.gov/ for the CVSS scores.
Resolution: The following version contains the resolution to these issues: \x95 EMC M&R (Watch4Net) 6.5u1 and later \x95 EMC ViPR SRM 3.6.1 and later
EMC strongly recommends all customers upgrade at the earliest opportunity. In addition, customers are recommended to review the Security Configuration Guide distributed with the product for specific instructions on secure configurations of the system.
Link to remedies: Registered customers can download upgraded software from support.emc.com at https://support.emc.com/downloads/34247_ViPR-SRM
Credits: EMC would like to thank Han Sahin of Securify B.V. (han.sahin@securify.nl) for reporting CVE-2015-0513 and CVE-2015-0514
Show details on source website{
"affected_products": {
"_id": null,
"data": [
{
"_id": null,
"model": "paging server",
"scope": "eq",
"trust": 1.2,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "download server",
"scope": "eq",
"trust": 1.2,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "ntp",
"scope": "lte",
"trust": 1.0,
"vendor": "ntp",
"version": "4.2.7"
},
{
"_id": null,
"model": "edge digital media player",
"scope": "eq",
"trust": 0.9,
"vendor": "cisco",
"version": "3000"
},
{
"_id": null,
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "apple",
"version": null
},
{
"_id": null,
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "cisco",
"version": null
},
{
"_id": null,
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "efficientip",
"version": null
},
{
"_id": null,
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "f5",
"version": null
},
{
"_id": null,
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "freebsd",
"version": null
},
{
"_id": null,
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "nec",
"version": null
},
{
"_id": null,
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "ntp",
"version": null
},
{
"_id": null,
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "omniti",
"version": null
},
{
"_id": null,
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "red hat",
"version": null
},
{
"_id": null,
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "watchguard",
"version": null
},
{
"_id": null,
"model": "linux",
"scope": "eq",
"trust": 0.6,
"vendor": "ubuntu",
"version": "14.10"
},
{
"_id": null,
"model": "linux lts",
"scope": "eq",
"trust": 0.6,
"vendor": "ubuntu",
"version": "14.04"
},
{
"_id": null,
"model": "linux lts i386",
"scope": "eq",
"trust": 0.6,
"vendor": "ubuntu",
"version": "12.04"
},
{
"_id": null,
"model": "linux lts amd64",
"scope": "eq",
"trust": 0.6,
"vendor": "ubuntu",
"version": "12.04"
},
{
"_id": null,
"model": "linux sparc",
"scope": "eq",
"trust": 0.6,
"vendor": "ubuntu",
"version": "10.04"
},
{
"_id": null,
"model": "linux powerpc",
"scope": "eq",
"trust": 0.6,
"vendor": "ubuntu",
"version": "10.04"
},
{
"_id": null,
"model": "linux i386",
"scope": "eq",
"trust": 0.6,
"vendor": "ubuntu",
"version": "10.04"
},
{
"_id": null,
"model": "linux arm",
"scope": "eq",
"trust": 0.6,
"vendor": "ubuntu",
"version": "10.04"
},
{
"_id": null,
"model": "linux amd64",
"scope": "eq",
"trust": 0.6,
"vendor": "ubuntu",
"version": "10.04"
},
{
"_id": null,
"model": "linux enterprise server sp1 ltss",
"scope": "eq",
"trust": 0.6,
"vendor": "suse",
"version": "11"
},
{
"_id": null,
"model": "linux",
"scope": "eq",
"trust": 0.6,
"vendor": "slackware",
"version": "14.1"
},
{
"_id": null,
"model": "linux",
"scope": "eq",
"trust": 0.6,
"vendor": "slackware",
"version": "14.0"
},
{
"_id": null,
"model": "linux",
"scope": "eq",
"trust": 0.6,
"vendor": "slackware",
"version": "13.37"
},
{
"_id": null,
"model": "linux",
"scope": "eq",
"trust": 0.6,
"vendor": "slackware",
"version": "13.1"
},
{
"_id": null,
"model": "linux",
"scope": "eq",
"trust": 0.6,
"vendor": "slackware",
"version": "13.0"
},
{
"_id": null,
"model": "enterprise linux workstation optional",
"scope": "eq",
"trust": 0.6,
"vendor": "redhat",
"version": "7"
},
{
"_id": null,
"model": "enterprise linux workstation optional",
"scope": "eq",
"trust": 0.6,
"vendor": "redhat",
"version": "6"
},
{
"_id": null,
"model": "enterprise linux workstation",
"scope": "eq",
"trust": 0.6,
"vendor": "redhat",
"version": "7"
},
{
"_id": null,
"model": "enterprise linux workstation",
"scope": "eq",
"trust": 0.6,
"vendor": "redhat",
"version": "6"
},
{
"_id": null,
"model": "enterprise linux server optional",
"scope": "eq",
"trust": 0.6,
"vendor": "redhat",
"version": "7"
},
{
"_id": null,
"model": "enterprise linux server optional",
"scope": "eq",
"trust": 0.6,
"vendor": "redhat",
"version": "6"
},
{
"_id": null,
"model": "enterprise linux server",
"scope": "eq",
"trust": 0.6,
"vendor": "redhat",
"version": "7"
},
{
"_id": null,
"model": "enterprise linux server",
"scope": "eq",
"trust": 0.6,
"vendor": "redhat",
"version": "6"
},
{
"_id": null,
"model": "enterprise linux hpc node optional",
"scope": "eq",
"trust": 0.6,
"vendor": "redhat",
"version": "6"
},
{
"_id": null,
"model": "enterprise linux hpc node",
"scope": "eq",
"trust": 0.6,
"vendor": "redhat",
"version": "6"
},
{
"_id": null,
"model": "enterprise linux desktop optional",
"scope": "eq",
"trust": 0.6,
"vendor": "redhat",
"version": "6"
},
{
"_id": null,
"model": "enterprise linux desktop",
"scope": "eq",
"trust": 0.6,
"vendor": "redhat",
"version": "6"
},
{
"_id": null,
"model": "enterprise linux desktop client",
"scope": "eq",
"trust": 0.6,
"vendor": "redhat",
"version": "5"
},
{
"_id": null,
"model": "enterprise linux computenode optional",
"scope": "eq",
"trust": 0.6,
"vendor": "redhat",
"version": "7"
},
{
"_id": null,
"model": "enterprise linux computenode",
"scope": "eq",
"trust": 0.6,
"vendor": "redhat",
"version": "7"
},
{
"_id": null,
"model": "enterprise linux client optional",
"scope": "eq",
"trust": 0.6,
"vendor": "redhat",
"version": "7"
},
{
"_id": null,
"model": "enterprise linux client",
"scope": "eq",
"trust": 0.6,
"vendor": "redhat",
"version": "7"
},
{
"_id": null,
"model": "enterprise linux server",
"scope": "eq",
"trust": 0.6,
"vendor": "redhat",
"version": "5"
},
{
"_id": null,
"model": "enterprise linux",
"scope": "eq",
"trust": 0.6,
"vendor": "oracle",
"version": "7"
},
{
"_id": null,
"model": "enterprise linux",
"scope": "eq",
"trust": 0.6,
"vendor": "oracle",
"version": "5"
},
{
"_id": null,
"model": "communications policy management",
"scope": "eq",
"trust": 0.6,
"vendor": "oracle",
"version": "12.1.1"
},
{
"_id": null,
"model": "communications policy management",
"scope": "eq",
"trust": 0.6,
"vendor": "oracle",
"version": "10.4.1"
},
{
"_id": null,
"model": "communications policy management",
"scope": "eq",
"trust": 0.6,
"vendor": "oracle",
"version": "9.9.1"
},
{
"_id": null,
"model": "communications policy management",
"scope": "eq",
"trust": 0.6,
"vendor": "oracle",
"version": "9.7.3"
},
{
"_id": null,
"model": "network time protocol 4.2.7p10",
"scope": null,
"trust": 0.6,
"vendor": "meinberg",
"version": null
},
{
"_id": null,
"model": "network time protocol",
"scope": "eq",
"trust": 0.6,
"vendor": "meinberg",
"version": "4.2.7"
},
{
"_id": null,
"model": "network time protocol",
"scope": "eq",
"trust": 0.6,
"vendor": "meinberg",
"version": "4.2.6"
},
{
"_id": null,
"model": "network time protocol",
"scope": "eq",
"trust": 0.6,
"vendor": "meinberg",
"version": "4.2.5"
},
{
"_id": null,
"model": "network time protocol 4.2.4p8@lennon-o-lpv",
"scope": null,
"trust": 0.6,
"vendor": "meinberg",
"version": null
},
{
"_id": null,
"model": "network time protocol 4.2.4p7@copenhagen-o",
"scope": null,
"trust": 0.6,
"vendor": "meinberg",
"version": null
},
{
"_id": null,
"model": "network time protocol",
"scope": "eq",
"trust": 0.6,
"vendor": "meinberg",
"version": "4.2.4"
},
{
"_id": null,
"model": "network time protocol",
"scope": "eq",
"trust": 0.6,
"vendor": "meinberg",
"version": "4.2.2"
},
{
"_id": null,
"model": "network time protocol",
"scope": "eq",
"trust": 0.6,
"vendor": "meinberg",
"version": "4.2.0"
},
{
"_id": null,
"model": "network time protocol",
"scope": "eq",
"trust": 0.6,
"vendor": "meinberg",
"version": "4.1.0"
},
{
"_id": null,
"model": "network time protocol",
"scope": "eq",
"trust": 0.6,
"vendor": "meinberg",
"version": "4.0"
},
{
"_id": null,
"model": "business server",
"scope": "eq",
"trust": 0.6,
"vendor": "mandriva",
"version": "1x8664"
},
{
"_id": null,
"model": "business server",
"scope": "eq",
"trust": 0.6,
"vendor": "mandriva",
"version": "1"
},
{
"_id": null,
"model": "vgw",
"scope": "eq",
"trust": 0.6,
"vendor": "juniper",
"version": "0"
},
{
"_id": null,
"model": "nsmexpress",
"scope": "eq",
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "nsm server software",
"scope": "eq",
"trust": 0.6,
"vendor": "juniper",
"version": "0"
},
{
"_id": null,
"model": "nsm series appliances",
"scope": "eq",
"trust": 0.6,
"vendor": "juniper",
"version": "0"
},
{
"_id": null,
"model": "nsm",
"scope": "eq",
"trust": 0.6,
"vendor": "juniper",
"version": "0"
},
{
"_id": null,
"model": "junos space",
"scope": "eq",
"trust": 0.6,
"vendor": "juniper",
"version": "0"
},
{
"_id": null,
"model": "junos os 14.2r1",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 14.1r2-s2",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 14.1r2",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 14.1r1",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.3r4",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.3r3-s2",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.3r3",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.3r2-s3",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.3r1",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.2x51-d25",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.2r5-s1",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.2r5",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.1x50-d30",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.1r4-s3",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.1r4-s2",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.3r8",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.3r7",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.2x50-d70",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.2r9",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.1x47-d15",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.1x47-d10",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.1x46-d25",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.1x46-d20",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.1x44-d40",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 11.4r12-s4",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 11.4r12-s1",
"scope": null,
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os",
"scope": "eq",
"trust": 0.6,
"vendor": "juniper",
"version": "0"
},
{
"_id": null,
"model": "xeon phi 7120p",
"scope": null,
"trust": 0.6,
"vendor": "intel",
"version": null
},
{
"_id": null,
"model": "xeon phi 7120a",
"scope": null,
"trust": 0.6,
"vendor": "intel",
"version": null
},
{
"_id": null,
"model": "xeon phi 5110p",
"scope": null,
"trust": 0.6,
"vendor": "intel",
"version": null
},
{
"_id": null,
"model": "xeon phi 3120a",
"scope": null,
"trust": 0.6,
"vendor": "intel",
"version": null
},
{
"_id": null,
"model": "manycore platform software stack",
"scope": "eq",
"trust": 0.6,
"vendor": "intel",
"version": "3.4"
},
{
"_id": null,
"model": "manycore platform software stack",
"scope": "eq",
"trust": 0.6,
"vendor": "intel",
"version": "3.3"
},
{
"_id": null,
"model": "manycore platform software stack",
"scope": "eq",
"trust": 0.6,
"vendor": "intel",
"version": "3.2"
},
{
"_id": null,
"model": "manycore platform software stack",
"scope": "eq",
"trust": 0.6,
"vendor": "intel",
"version": "3.1"
},
{
"_id": null,
"model": "manycore platform software stack",
"scope": "eq",
"trust": 0.6,
"vendor": "intel",
"version": "2.1"
},
{
"_id": null,
"model": "vios",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "2.2.3"
},
{
"_id": null,
"model": "vios",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "2.2.14"
},
{
"_id": null,
"model": "vios",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "2.2"
},
{
"_id": null,
"model": "vios",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "2.2.3.4"
},
{
"_id": null,
"model": "vios",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "2.2.3.3"
},
{
"_id": null,
"model": "vios",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "2.2.3.2"
},
{
"_id": null,
"model": "vios",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "2.2.3.0"
},
{
"_id": null,
"model": "vios",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "2.2.2.5"
},
{
"_id": null,
"model": "vios",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "2.2.2.4"
},
{
"_id": null,
"model": "vios",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "2.2.2.0"
},
{
"_id": null,
"model": "vios",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "2.2.1.9"
},
{
"_id": null,
"model": "vios",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "2.2.1.8"
},
{
"_id": null,
"model": "vios",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "2.2.1.3"
},
{
"_id": null,
"model": "vios",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "2.2.1.1"
},
{
"_id": null,
"model": "vios",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "2.2.1.0"
},
{
"_id": null,
"model": "vios",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "2.2.0.13"
},
{
"_id": null,
"model": "vios",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "2.2.0.12"
},
{
"_id": null,
"model": "vios",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "2.2.0.11"
},
{
"_id": null,
"model": "vios",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "2.2.0.10"
},
{
"_id": null,
"model": "smartcloud entry fp",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "3.19"
},
{
"_id": null,
"model": "smartcloud entry",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "3.1"
},
{
"_id": null,
"model": "smart analytics system",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "77100"
},
{
"_id": null,
"model": "smart analytics system",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "77000"
},
{
"_id": null,
"model": "smart analytics system",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "76000"
},
{
"_id": null,
"model": "smart analytics system",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "56003"
},
{
"_id": null,
"model": "smart analytics system",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "56002"
},
{
"_id": null,
"model": "smart analytics system",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "56001"
},
{
"_id": null,
"model": "security network protection",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "71005.3"
},
{
"_id": null,
"model": "security network protection",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "71005.2"
},
{
"_id": null,
"model": "security network protection",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "51005.3"
},
{
"_id": null,
"model": "security network protection",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "51005.2"
},
{
"_id": null,
"model": "security network protection",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "41005.3"
},
{
"_id": null,
"model": "security network protection",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "41005.2"
},
{
"_id": null,
"model": "security network protection",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "31005.3"
},
{
"_id": null,
"model": "security network protection",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "31005.2"
},
{
"_id": null,
"model": "pureflex",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "x3950x6"
},
{
"_id": null,
"model": "pureflex",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "x3850x6"
},
{
"_id": null,
"model": "pureflex x240m5+pen",
"scope": null,
"trust": 0.6,
"vendor": "ibm",
"version": null
},
{
"_id": null,
"model": "pureflex x240m4",
"scope": null,
"trust": 0.6,
"vendor": "ibm",
"version": null
},
{
"_id": null,
"model": "pureflex x220m4",
"scope": null,
"trust": 0.6,
"vendor": "ibm",
"version": null
},
{
"_id": null,
"model": "puredata system for operational analytics",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "1.1"
},
{
"_id": null,
"model": "puredata system for operational analytics",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "1.0"
},
{
"_id": null,
"model": "power hmc",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "8.8.2.0"
},
{
"_id": null,
"model": "power hmc",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "8.8.1.0"
},
{
"_id": null,
"model": "power hmc",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "7.7.9.0"
},
{
"_id": null,
"model": "power hmc",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "7.7.8.0"
},
{
"_id": null,
"model": "power hmc",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "7.7.7.0"
},
{
"_id": null,
"model": "power hmc",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "7.7.3.0"
},
{
"_id": null,
"model": "nextscale nx360m5",
"scope": null,
"trust": 0.6,
"vendor": "ibm",
"version": null
},
{
"_id": null,
"model": "nextscale nx360m4",
"scope": null,
"trust": 0.6,
"vendor": "ibm",
"version": null
},
{
"_id": null,
"model": "netezza host management",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "5.3.3"
},
{
"_id": null,
"model": "idataplex dx360m4",
"scope": null,
"trust": 0.6,
"vendor": "ibm",
"version": null
},
{
"_id": null,
"model": "aix",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "7.1"
},
{
"_id": null,
"model": "aix",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "6.1"
},
{
"_id": null,
"model": "aix",
"scope": "eq",
"trust": 0.6,
"vendor": "ibm",
"version": "5.3"
},
{
"_id": null,
"model": "rack v100r001c00",
"scope": "eq",
"trust": 0.6,
"vendor": "huawei",
"version": "x8000"
},
{
"_id": null,
"model": "v1300n v100r002c02",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "tecal xh621 v100r001c00b010",
"scope": "eq",
"trust": 0.6,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "tecal xh320 v100r001c00spc105",
"scope": "eq",
"trust": 0.6,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "tecal xh311 v100r001c00spc100",
"scope": "eq",
"trust": 0.6,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "tecal xh310 v100r001c00spc100",
"scope": "eq",
"trust": 0.6,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "rh5885h v100r003c00",
"scope": "eq",
"trust": 0.6,
"vendor": "huawei",
"version": "v3"
},
{
"_id": null,
"model": "rh5885 v100r003c01",
"scope": "eq",
"trust": 0.6,
"vendor": "huawei",
"version": "v3"
},
{
"_id": null,
"model": "rh5885 v100r001c00",
"scope": "eq",
"trust": 0.6,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "rh2485 v100r002c00",
"scope": "eq",
"trust": 0.6,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "rh2288h v100r002c00",
"scope": "eq",
"trust": 0.6,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "rh2288e v100r002c00",
"scope": "eq",
"trust": 0.6,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "rh2288 v100r002c00",
"scope": "eq",
"trust": 0.6,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "rh2285h v100r002c00",
"scope": "eq",
"trust": 0.6,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "rh2285 v100r002c00",
"scope": "eq",
"trust": 0.6,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "rh1288 v100r002c00",
"scope": "eq",
"trust": 0.6,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "oceanstor uds v100r002c01",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "oceanstor uds v100r002c00",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "oceanstor s6800t v200r002c00",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "oceanstor s5800t v200r002c00",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "oceanstor s5600t v100r002c00",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "oceanstor s5500t v200r002c00",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "oceanstor s2600t v200r002c00",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "oceanstor hvs88t v100r001c00",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "oceanstor hvs85t v100r001c00",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "oceanstor 18800f v100r001c00",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "oceanstor v100r001c00",
"scope": "eq",
"trust": 0.6,
"vendor": "huawei",
"version": "18800"
},
{
"_id": null,
"model": "high-density server dh628 v100r001c00",
"scope": "eq",
"trust": 0.6,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "high-density server dh621 v100r001c00",
"scope": "eq",
"trust": 0.6,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "high-density server dh620 v100r001c00",
"scope": "eq",
"trust": 0.6,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "high-density server dh320 v100r001c00",
"scope": "eq",
"trust": 0.6,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "fusionsphere openstack v100r005c00",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "fusioncube v100r002c02spc300",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "fusioncube v100r002c02spc200",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "fusioncube v100r002c02spc100",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "fusioncube v100r002c01spc100",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "fusioncompute v100r005c10",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "fusioncompute v100r005c00",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "fusioncompute v100r003c10",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "fusioncompute v100r003c00",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "fusionaccess v100r005c20",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "fusionaccess v100r005c10",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace vtm v100r002c00",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace vtm v100r001c30",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace vtm v100r001c02",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace vcn3000 v100r002c00",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace usm v200r003c00",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace uc v200r003c00",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace uc v200r002c01",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace uc v100r002c00",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace u2980 v200r003c00",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace u2980 v100r001c02spc200",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace u2980 v100r001c01",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace ivs v100r001c02",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace dcm v100r002c01",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace dcm v100r001c03",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace dcm v100r001c02",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace dcm v100r001c01",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace cc v200r001c50",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace cc v200r001c32",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace cc v200r001c31",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace cc v200r001c03",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace cad v100r001c01lhue01",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "esight uc\u0026c v100r001c20",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "esight uc\u0026c v100r001c01",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "esight network v200r005c00",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "esight network v200r003c10",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "esight network v200r003c01",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "e9000 chassis v100r001c00",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "e6000 chassis v100r001c00",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "dc v100r002c01spc001",
"scope": null,
"trust": 0.6,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "virtualization performance viewer",
"scope": "eq",
"trust": 0.6,
"vendor": "hp",
"version": "2.10"
},
{
"_id": null,
"model": "virtualization performance viewer",
"scope": "eq",
"trust": 0.6,
"vendor": "hp",
"version": "2.01"
},
{
"_id": null,
"model": "virtualization performance viewer",
"scope": "eq",
"trust": 0.6,
"vendor": "hp",
"version": "2.0"
},
{
"_id": null,
"model": "virtualization performance viewer",
"scope": "eq",
"trust": 0.6,
"vendor": "hp",
"version": "1.2"
},
{
"_id": null,
"model": "virtualization performance viewer",
"scope": "eq",
"trust": 0.6,
"vendor": "hp",
"version": "1.1"
},
{
"_id": null,
"model": "virtualization performance viewer",
"scope": "eq",
"trust": 0.6,
"vendor": "hp",
"version": "1.0"
},
{
"_id": null,
"model": "vcx",
"scope": "eq",
"trust": 0.6,
"vendor": "hp",
"version": "0"
},
{
"_id": null,
"model": "tcp/ip services for openvms",
"scope": "eq",
"trust": 0.6,
"vendor": "hp",
"version": "5.7"
},
{
"_id": null,
"model": "hp-ux b.11.31",
"scope": null,
"trust": 0.6,
"vendor": "hp",
"version": null
},
{
"_id": null,
"model": "advanced server ha8000cr",
"scope": "eq",
"trust": 0.6,
"vendor": "hitachi",
"version": "0"
},
{
"_id": null,
"model": "linux",
"scope": null,
"trust": 0.6,
"vendor": "gentoo",
"version": null
},
{
"_id": null,
"model": "freebsd",
"scope": "eq",
"trust": 0.6,
"vendor": "freebsd",
"version": "0"
},
{
"_id": null,
"model": "vipr srm",
"scope": "eq",
"trust": 0.6,
"vendor": "emc",
"version": "3.6.0"
},
{
"_id": null,
"model": "m\u0026r",
"scope": "eq",
"trust": 0.6,
"vendor": "emc",
"version": "6.5"
},
{
"_id": null,
"model": "linux sparc",
"scope": "eq",
"trust": 0.6,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "linux s/390",
"scope": "eq",
"trust": 0.6,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "linux powerpc",
"scope": "eq",
"trust": 0.6,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "linux mips",
"scope": "eq",
"trust": 0.6,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "linux ia-64",
"scope": "eq",
"trust": 0.6,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "linux ia-32",
"scope": "eq",
"trust": 0.6,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "linux arm",
"scope": "eq",
"trust": 0.6,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "linux amd64",
"scope": "eq",
"trust": 0.6,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "netscaler gateway",
"scope": "eq",
"trust": 0.6,
"vendor": "citrix",
"version": "0"
},
{
"_id": null,
"model": "netscaler application delivery controller",
"scope": "eq",
"trust": 0.6,
"vendor": "citrix",
"version": "0"
},
{
"_id": null,
"model": "wide area application services",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "webex social",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "webex meetings server base",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "2.5"
},
{
"_id": null,
"model": "webex meetings server",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "2.5"
},
{
"_id": null,
"model": "webex meetings server 2.0mr2",
"scope": null,
"trust": 0.6,
"vendor": "cisco",
"version": null
},
{
"_id": null,
"model": "webex meetings server",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "2.0"
},
{
"_id": null,
"model": "virtualization experience client",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "62150"
},
{
"_id": null,
"model": "virtual systems operations center for vpe project",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "virtual security gateway",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "videoscape conductor",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "videoscape back office",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "video surveillance media server",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "video delivery system recorder",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "universal small cell ran management system wireless",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "unity connection",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "unified sip proxy",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "unified provisioning manager",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "8.6"
},
{
"_id": null,
"model": "unified meetingplace",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "unified intelligence center",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "unified contact center express",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "unified communications manager",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "unified communications domain manager",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "ucs manager",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "ucs invicta series",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "ucs director",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "transaction encryption device",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "telepresence tx series",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "90000"
},
{
"_id": null,
"model": "telepresence te software",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "-0"
},
{
"_id": null,
"model": "telepresence system",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "500-370"
},
{
"_id": null,
"model": "telepresence system",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "500-320"
},
{
"_id": null,
"model": "telepresence system series",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "30000"
},
{
"_id": null,
"model": "telepresence system",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "13000"
},
{
"_id": null,
"model": "telepresence system",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "11000"
},
{
"_id": null,
"model": "telepresence system",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "10000"
},
{
"_id": null,
"model": "telepresence isdn link",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "telepresence",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "13100"
},
{
"_id": null,
"model": "show and share",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "service control engines system software",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "scos",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "remote network control system",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "remote conditional access system",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "quantum son suite",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "quantum policy suite",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "prime service catalog virtual appliance",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "prime license manager",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "prime lan management solution",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "prime infrastructure",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": null
},
{
"_id": null,
"model": "prime data center network manager",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "prime collaboration provisioning",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "powervu network center",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "powervu d9190 conditional access manager",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "powerkey encryption server",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "physical access manager",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "onepk all-in-one vm",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "nexus series switches",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "90000"
},
{
"_id": null,
"model": "nexus series switches",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "70000"
},
{
"_id": null,
"model": "nexus series switches",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "60000"
},
{
"_id": null,
"model": "nexus series switches",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "50000"
},
{
"_id": null,
"model": "nexus series switches",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "40000"
},
{
"_id": null,
"model": "nexus series switches",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "30000"
},
{
"_id": null,
"model": "nexus series switches",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "1000v0"
},
{
"_id": null,
"model": "network configuration and change management service",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "network configuration and change management",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "netflow collection agent",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "mediasense",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "media experience engines",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "mds series multilayer switches",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "90000"
},
{
"_id": null,
"model": "management heartbeat server",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "jabber guest",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "iptv service delivery system",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "ip interoperability and collaboration system",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "ios xr software",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "ios xr for cisco network convergence system",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "60000"
},
{
"_id": null,
"model": "international digital network control system",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "intelligent automation for cloud",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "im and presence service",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "firesight system software",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "finesse",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "explorer controller",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "enterprise content delivery service",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "encryption appliance",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "emergency responder",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "emergency responder",
"scope": null,
"trust": 0.6,
"vendor": "cisco",
"version": null
},
{
"_id": null,
"model": "dncs application server",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "digital transport adapter control system",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "digital network control system",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "digital media manager",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "dcm series 9900-digital content manager",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "d9036 modular encoding platform",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "common services platform collector",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "common download server",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "command server",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "20000"
},
{
"_id": null,
"model": "cloud object store",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "telepresence endpoints sx series",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "telepresence endpoints mxg2 series",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "telepresence endpoints mx series",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "telepresence endpoints ex series",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "telepresence endpoints c series",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "telepresence endpoints 10\" touch panel",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "ironport encryption appliance",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "application policy infrastructure controller",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "autobackup server",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "asa cx and cisco prime security manager",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "application networking manager",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "application and content networking system",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "centos",
"scope": "eq",
"trust": 0.6,
"vendor": "centos",
"version": "7"
},
{
"_id": null,
"model": "centos",
"scope": "eq",
"trust": 0.6,
"vendor": "centos",
"version": "5"
},
{
"_id": null,
"model": "proactive contact",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "5.1"
},
{
"_id": null,
"model": "proactive contact",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "5.0"
},
{
"_id": null,
"model": "one-x client enablement services sp2",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.2"
},
{
"_id": null,
"model": "one-x client enablement services",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.2"
},
{
"_id": null,
"model": "one-x client enablement services",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.1.2"
},
{
"_id": null,
"model": "one-x client enablement services",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.1.1"
},
{
"_id": null,
"model": "message networking",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.3"
},
{
"_id": null,
"model": "message networking",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.2.0"
},
{
"_id": null,
"model": "meeting exchange",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "5.2"
},
{
"_id": null,
"model": "meeting exchange",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "5.1"
},
{
"_id": null,
"model": "meeting exchange",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "5.0"
},
{
"_id": null,
"model": "iq",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "5.1.1"
},
{
"_id": null,
"model": "iq",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "5.1"
},
{
"_id": null,
"model": "iq",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "5"
},
{
"_id": null,
"model": "ip office application server",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "8.1"
},
{
"_id": null,
"model": "ip office application server",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "8.0"
},
{
"_id": null,
"model": "communication server 1000m signaling server",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "7.5"
},
{
"_id": null,
"model": "communication server 1000m signaling server",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "7.0"
},
{
"_id": null,
"model": "communication server 1000m",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "7.5"
},
{
"_id": null,
"model": "communication server 1000m",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "7.0"
},
{
"_id": null,
"model": "communication server 1000e signaling server",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "7.5"
},
{
"_id": null,
"model": "communication server 1000e signaling server",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "7.0"
},
{
"_id": null,
"model": "communication server 1000e",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "7.5"
},
{
"_id": null,
"model": "communication server 1000e",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "7.0"
},
{
"_id": null,
"model": "aura system platform",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.2.1"
},
{
"_id": null,
"model": "aura system platform",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.0.2"
},
{
"_id": null,
"model": "aura system platform",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.0.1"
},
{
"_id": null,
"model": "aura system platform",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.3"
},
{
"_id": null,
"model": "aura system platform",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.2.1.0.9"
},
{
"_id": null,
"model": "aura system platform sp1",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.2"
},
{
"_id": null,
"model": "aura system platform",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.2"
},
{
"_id": null,
"model": "aura system platform",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.0.3.9.3"
},
{
"_id": null,
"model": "aura system platform",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.0.3.8.3"
},
{
"_id": null,
"model": "aura system platform",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.0.3.0.3"
},
{
"_id": null,
"model": "aura system platform sp3",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.0"
},
{
"_id": null,
"model": "aura system platform sp2",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.0"
},
{
"_id": null,
"model": "aura system platform",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.0"
},
{
"_id": null,
"model": "aura system manager",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.3"
},
{
"_id": null,
"model": "aura system manager sp3",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.2"
},
{
"_id": null,
"model": "aura system manager",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.2"
},
{
"_id": null,
"model": "aura system manager",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.1.5"
},
{
"_id": null,
"model": "aura system manager",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.1.3"
},
{
"_id": null,
"model": "aura system manager",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.1.2"
},
{
"_id": null,
"model": "aura system manager",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.1.1"
},
{
"_id": null,
"model": "aura system manager sp2",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.1"
},
{
"_id": null,
"model": "aura system manager sp1",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.1"
},
{
"_id": null,
"model": "aura system manager",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.1"
},
{
"_id": null,
"model": "aura system manager sp1",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.0"
},
{
"_id": null,
"model": "aura system manager",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.0"
},
{
"_id": null,
"model": "aura session manager",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.2.1"
},
{
"_id": null,
"model": "aura session manager",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.1.5"
},
{
"_id": null,
"model": "aura session manager",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.1.3"
},
{
"_id": null,
"model": "aura session manager",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.1.2"
},
{
"_id": null,
"model": "aura session manager",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.1.1"
},
{
"_id": null,
"model": "aura session manager",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.0.1"
},
{
"_id": null,
"model": "aura session manager",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.3"
},
{
"_id": null,
"model": "aura session manager",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.2.2"
},
{
"_id": null,
"model": "aura session manager sp1",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.2"
},
{
"_id": null,
"model": "aura session manager",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.2"
},
{
"_id": null,
"model": "aura session manager sp2",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.1"
},
{
"_id": null,
"model": "aura session manager sp1",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.1"
},
{
"_id": null,
"model": "aura session manager",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.1"
},
{
"_id": null,
"model": "aura session manager sp1",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.0"
},
{
"_id": null,
"model": "aura session manager",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.0"
},
{
"_id": null,
"model": "aura presence services",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.1.2"
},
{
"_id": null,
"model": "aura presence services",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.1.1"
},
{
"_id": null,
"model": "aura presence services sp1",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.1"
},
{
"_id": null,
"model": "aura presence services",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.1"
},
{
"_id": null,
"model": "aura presence services",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.0"
},
{
"_id": null,
"model": "aura conferencing",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "7.0"
},
{
"_id": null,
"model": "aura conferencing standard",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.0"
},
{
"_id": null,
"model": "aura conferencing sp1 standard",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.0"
},
{
"_id": null,
"model": "aura communication manager",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.3"
},
{
"_id": null,
"model": "aura communication manager",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.2"
},
{
"_id": null,
"model": "aura communication manager",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.0.1"
},
{
"_id": null,
"model": "aura communication manager",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.0"
},
{
"_id": null,
"model": "aura application server sip core",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "53003.0"
},
{
"_id": null,
"model": "aura application server sip core",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "53002.0"
},
{
"_id": null,
"model": "aura application enablement services",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.1.2"
},
{
"_id": null,
"model": "aura application enablement services",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.1.1"
},
{
"_id": null,
"model": "aura application enablement services",
"scope": "eq",
"trust": 0.6,
"vendor": "avaya",
"version": "6.1"
},
{
"_id": null,
"model": "network time protocol",
"scope": "ne",
"trust": 0.6,
"vendor": "meinberg",
"version": "4.2.8"
},
{
"_id": null,
"model": "junos os 14.2r3",
"scope": "ne",
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 14.1x55-d16",
"scope": "ne",
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 14.1x50-d90",
"scope": "ne",
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 14.1r5",
"scope": "ne",
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.3r6",
"scope": "ne",
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.2r8",
"scope": "ne",
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.3x48-d15",
"scope": "ne",
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.3r9",
"scope": "ne",
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.1x47-d20",
"scope": "ne",
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.1x46-d35",
"scope": "ne",
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.1x44-d50",
"scope": "ne",
"trust": 0.6,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "smartcloud entry fp",
"scope": "ne",
"trust": 0.6,
"vendor": "ibm",
"version": "3.110"
},
{
"_id": null,
"model": "vcx",
"scope": "ne",
"trust": 0.6,
"vendor": "hp",
"version": "9.8.17"
},
{
"_id": null,
"model": "vipr srm",
"scope": "ne",
"trust": 0.6,
"vendor": "emc",
"version": "3.6.1"
},
{
"_id": null,
"model": "m\u0026r 6.5u1",
"scope": "ne",
"trust": 0.6,
"vendor": "emc",
"version": null
},
{
"_id": null,
"model": "linux enterprise server sp2 ltss",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "110"
},
{
"_id": null,
"model": "linux enterprise server sp3 for vmware",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "11"
},
{
"_id": null,
"model": "linux enterprise server sp3",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "11"
},
{
"_id": null,
"model": "linux enterprise server sp4 ltss",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "10"
},
{
"_id": null,
"model": "linux enterprise desktop sp3",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "11"
},
{
"_id": null,
"model": "opensuse evergreen",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "11.4"
},
{
"_id": null,
"model": "linux enterprise server",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "12"
},
{
"_id": null,
"model": "linux enterprise desktop",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "12"
},
{
"_id": null,
"model": "opensuse",
"scope": "eq",
"trust": 0.3,
"vendor": "s u s e",
"version": "13.2"
},
{
"_id": null,
"model": "opensuse",
"scope": "eq",
"trust": 0.3,
"vendor": "s u s e",
"version": "13.1"
},
{
"_id": null,
"model": "opensuse",
"scope": "eq",
"trust": 0.3,
"vendor": "s u s e",
"version": "12.3"
},
{
"_id": null,
"model": "solaris",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "11.2"
},
{
"_id": null,
"model": "solaris",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "11.1"
},
{
"_id": null,
"model": "solaris",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "10"
},
{
"_id": null,
"model": "real-time compression appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "3.8"
},
{
"_id": null,
"model": "real-time compression appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "3.9"
},
{
"_id": null,
"model": "infosphere guardium",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.1"
},
{
"_id": null,
"model": "infosphere guardium",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "9.0"
},
{
"_id": null,
"model": "infosphere guardium",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.2"
},
{
"_id": null,
"model": "flex system p460 compute node",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "(7895-43x)0"
},
{
"_id": null,
"model": "flex system p460",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "(7895-42x)0"
},
{
"_id": null,
"model": "flex system p270 compute node",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "(7954-24x)0"
},
{
"_id": null,
"model": "flex system p260 compute node /fc efd9",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "0"
},
{
"_id": null,
"model": "flex system p260",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "(7895-23x)0"
},
{
"_id": null,
"model": "flex system p260",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "(7895-22x)0"
},
{
"_id": null,
"model": "flex system p24l",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "0"
},
{
"_id": null,
"model": "flex system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.3.2"
},
{
"_id": null,
"model": "flex system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.2.1"
},
{
"_id": null,
"model": "flex system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.2"
},
{
"_id": null,
"model": "flex system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.1"
},
{
"_id": null,
"model": "flex system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.3.1"
},
{
"_id": null,
"model": "flex system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.3.0.1"
},
{
"_id": null,
"model": "flex system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.3.0"
},
{
"_id": null,
"model": "wx5004-ei (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "u200s and cs (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "u200a and m (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "secblade iii (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "secblade fw (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "msr50 g2",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5-0"
},
{
"_id": null,
"model": "msr50",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5-0"
},
{
"_id": null,
"model": "msr30-1x",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5-0"
},
{
"_id": null,
"model": "msr30-16",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5-0"
},
{
"_id": null,
"model": "msr30",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5-0"
},
{
"_id": null,
"model": "msr20-1x (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "msr20-1x",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5-0"
},
{
"_id": null,
"model": "msr20 (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "msr1000 (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "msr (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "9xx5)0"
},
{
"_id": null,
"model": "msr (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "93x5)0"
},
{
"_id": null,
"model": "msr 50-g2 (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "msr (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "505)0"
},
{
"_id": null,
"model": "msr (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "30-1x5)0"
},
{
"_id": null,
"model": "msr (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "30-165)0"
},
{
"_id": null,
"model": "msr (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "305)0"
},
{
"_id": null,
"model": "hsr6800 (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "hsr6602 (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "hp870 (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "hp850 (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "hp830 (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "hp6000 (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "f5000-c/s (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "f5000-a (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "f1000-s-ei (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "f1000-e (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "f1000-a-ei (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "a6600 (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "9500e (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "(comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "88005)0"
},
{
"_id": null,
"model": "(comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "75005)0"
},
{
"_id": null,
"model": "(comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "58305)0"
},
{
"_id": null,
"model": "(comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "58205)0"
},
{
"_id": null,
"model": "(comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "58005)0"
},
{
"_id": null,
"model": "5500si (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "hi (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "55005)0"
},
{
"_id": null,
"model": "ei (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "55005)0"
},
{
"_id": null,
"model": "si (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "51205)0"
},
{
"_id": null,
"model": "ei (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "51205)0"
},
{
"_id": null,
"model": "4800g (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "4500g (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "4210g (comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5)0"
},
{
"_id": null,
"model": "(comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "36105)0"
},
{
"_id": null,
"model": "(comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "3600v25)0"
},
{
"_id": null,
"model": "(comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "3100v2-485)0"
},
{
"_id": null,
"model": "(comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "3100v25)0"
},
{
"_id": null,
"model": "(comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "125005)0"
},
{
"_id": null,
"model": "(comware",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "105005)0"
},
{
"_id": null,
"model": "enterprise server ap8800",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"_id": null,
"model": "enterprise server ap7000",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"_id": null,
"model": "bladesymphony cb500 series",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"_id": null,
"model": "bladesymphony cb320 series",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"_id": null,
"model": "bladesymphony cb2500 series",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"_id": null,
"model": "bladesymphony cb2000 series",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"_id": null,
"model": "bladesymphony bs500 series",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"_id": null,
"model": "bladesymphony bs320 series",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"_id": null,
"model": "bladesymphony bs2500 series",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"_id": null,
"model": "bladesymphony bs2000 series",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"_id": null,
"model": "bladesymphony bs1000 series",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"_id": null,
"model": "load balancer big-ip1500",
"scope": "eq",
"trust": 0.3,
"vendor": "f5",
"version": "0"
},
{
"_id": null,
"model": "telepresence profile series",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "ip office server edition",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "9.0"
},
{
"_id": null,
"model": "ip office server edition",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "8.1"
},
{
"_id": null,
"model": "ip office application server sp",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "9.02"
},
{
"_id": null,
"model": "ip office application server sp",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "9.01"
},
{
"_id": null,
"model": "ip office application server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "9.0"
},
{
"_id": null,
"model": "cms r17",
"scope": null,
"trust": 0.3,
"vendor": "avaya",
"version": null
},
{
"_id": null,
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.3.1"
},
{
"_id": null,
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.3.3"
},
{
"_id": null,
"model": "aura experience portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0.2"
},
{
"_id": null,
"model": "aura experience portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0.1"
},
{
"_id": null,
"model": "aura experience portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "7.0"
},
{
"_id": null,
"model": "aura experience portal sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"_id": null,
"model": "aura experience portal sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"_id": null,
"model": "aura experience portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"_id": null,
"model": "aura conferencing",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "8.0"
},
{
"_id": null,
"model": "aura collaboration environment",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "3.0"
},
{
"_id": null,
"model": "aura collaboration environment",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "2.0"
},
{
"_id": null,
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.9.5"
},
{
"_id": null,
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.8.5"
},
{
"_id": null,
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.10.1"
},
{
"_id": null,
"model": "wx5004-ei (comware r2507p35",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "vsr (comware r0204p01",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "7)"
},
{
"_id": null,
"model": "(comware r1513p95",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "v19105)"
},
{
"_id": null,
"model": "u200s and cs (comware f5123p31",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "u200a and m (comware f5123p31",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "smb1920 (comware r1106",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "smb1910 (comware r1108",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "smb (comware r1105",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "16205)"
},
{
"_id": null,
"model": "secblade iii (comware r3820p03",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "secblade fw (comware r3181p05",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "msr50 ru r2513l61",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5"
},
{
"_id": null,
"model": "msr50 g2 r2513l61",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5-"
},
{
"_id": null,
"model": "msr50 epu ru r2513l61",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5"
},
{
"_id": null,
"model": "msr50 r2513l61",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5-"
},
{
"_id": null,
"model": "msr4000 (comware r0106p31",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "7)"
},
{
"_id": null,
"model": "msr316 ru r2513l61",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5"
},
{
"_id": null,
"model": "msr301x ru r2513l61",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5"
},
{
"_id": null,
"model": "msr3000 (comware r0106p31",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "7)"
},
{
"_id": null,
"model": "msr30-1x r2513l61",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5-"
},
{
"_id": null,
"model": "msr30-16 r2513l61",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5-"
},
{
"_id": null,
"model": "msr30 ru r2513l61",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5"
},
{
"_id": null,
"model": "msr30 r2513l61",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5-"
},
{
"_id": null,
"model": "msr2000 (comware r0106p31",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "7)"
},
{
"_id": null,
"model": "msr20-1x ru r2513l61",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5"
},
{
"_id": null,
"model": "msr20-1x (comware r2513p45",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "msr20-1x r2513l61",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5-"
},
{
"_id": null,
"model": "msr20 ru r2513l61",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5"
},
{
"_id": null,
"model": "msr20 (comware r2513p45",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "msr20 r2513l61",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5-"
},
{
"_id": null,
"model": "msr1000 ru r2513l61",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5"
},
{
"_id": null,
"model": "msr1000 (comware r0106p31",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "7)"
},
{
"_id": null,
"model": "msr1000 (comware r2513p45",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "msr (comware r2513p45",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "9xx5)"
},
{
"_id": null,
"model": "msr (comware r2513p45",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "93x5)"
},
{
"_id": null,
"model": "msr 50-g2 (comware r2513p45",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "msr (comware r2513p45",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "505)"
},
{
"_id": null,
"model": "msr (comware r2513p45",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "30-1x5)"
},
{
"_id": null,
"model": "msr (comware r2513p45",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "30-165)"
},
{
"_id": null,
"model": "msr (comware r2513p45",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "305)"
},
{
"_id": null,
"model": "hsr6800 ru r3303p18",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5"
},
{
"_id": null,
"model": "hsr6800 (comware r3303p18",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "hsr6602 ru r3303p18",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5"
},
{
"_id": null,
"model": "hsr6602 (comware r3303p18",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "hp870 (comware r2607p35",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "hp850 (comware r2607p35",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "hp830 (comware r3507p35",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "hp6000 (comware r2507p35",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "f5000-c/s (comware r3811p03",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "f5000-a (comware f3210p23",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "f1000-s-ei (comware r3734p06",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "f1000-e (comware r3181p05",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "f1000-a-ei (comware r3734p06",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "a6600 (comware r3303p18",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "9500e (comware r1828p06",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "(comware r3627p04",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "88005)"
},
{
"_id": null,
"model": "(comware r2122",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "79007)"
},
{
"_id": null,
"model": "(comware r6708p10",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "75005)"
},
{
"_id": null,
"model": "ru r3303p18",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "66025"
},
{
"_id": null,
"model": "rse ru r3303p18",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "66005"
},
{
"_id": null,
"model": "rpe ru r3303p18",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "66005"
},
{
"_id": null,
"model": "(comware r2311p06",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "59207)"
},
{
"_id": null,
"model": "(comware r2311p06",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "59007)"
},
{
"_id": null,
"model": "(comware r1118p11",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "58305)"
},
{
"_id": null,
"model": "(comware r1809p03",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "58205)"
},
{
"_id": null,
"model": "(comware r7006p12",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "58007)"
},
{
"_id": null,
"model": "(comware r1809p03",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "58005)"
},
{
"_id": null,
"model": "(comware r2311p06",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "57007)"
},
{
"_id": null,
"model": "5500si (comware r2221p08",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "5)"
},
{
"_id": null,
"model": "hi (comware r5501p06",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "55005)"
},
{
"_id": null,
"model": "(comware r3108p03",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "51307)"
},
{
"_id": null,
"model": "(comware r1112",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "129007)"
},
{
"_id": null,
"model": "(comware r7328p04",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "125007)"
},
{
"_id": null,
"model": "(comware r7169p01",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "119007)"
},
{
"_id": null,
"model": "(comware r7150",
"scope": "ne",
"trust": 0.3,
"vendor": "hp",
"version": "105007)"
},
{
"_id": null,
"model": "smart analytics system",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "57100"
},
{
"_id": null,
"model": "smart analytics system",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "20500"
},
{
"_id": null,
"model": "smart analytics system",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "10500"
},
{
"_id": null,
"model": "netezza host management",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.3.2.0"
},
{
"_id": null,
"model": "infosphere balanced warehouse c4000",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "0"
},
{
"_id": null,
"model": "infosphere balanced warehouse c3000",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "0"
},
{
"_id": null,
"model": "flex system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.3.20"
},
{
"_id": null,
"model": "flex system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.3.1.0"
},
{
"_id": null,
"model": "flex system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.3.0.0"
},
{
"_id": null,
"model": "flex system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.2.1.0"
},
{
"_id": null,
"model": "flex system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.2.0.0"
},
{
"_id": null,
"model": "flex system manager",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.1.0.0"
},
{
"_id": null,
"model": "network time protocol 4.2.7p230",
"scope": "ne",
"trust": 0.3,
"vendor": "meinberg",
"version": null
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#852879"
},
{
"db": "BID",
"id": "71761"
},
{
"db": "BID",
"id": "71762"
},
{
"db": "NVD",
"id": "CVE-2014-9293"
}
]
},
"credits": {
"_id": null,
"data": "Stephen Roettger and Neel Mehta of the Google Security Team.",
"sources": [
{
"db": "BID",
"id": "71761"
}
],
"trust": 0.3
},
"cve": "CVE-2014-9293",
"cvss": {
"_id": null,
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "CVE-2014-9293",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 1.0,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2014-9293",
"trust": 1.0,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2014-9293"
}
]
},
"description": {
"_id": null,
"data": "The config_auth function in ntpd in NTP before 4.2.7p11, when an auth key is not configured, improperly generates a key, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack. The NTP Project ntpd version 4.2.7 and pervious versions contain several vulnerabilities. ntp-keygen prior to version 4.2.7p230 also uses a non-cryptographic random number generator when generating symmetric keys. These vulnerabilities may affect ntpd acting as a server or client. Network Time Protocol is prone to multiple stack-based buffer-overflow vulnerabilities because it fails to properly bounds-check user-supplied data before copying it into an insufficiently sized buffer. \nSuccessful exploits may allow an attacker to execute arbitrary code with the privileges of the ntpd process. Failed attempts will likely cause a denial-of-service condition. \nNetwork Time Protocol 4.2.7 and prior are vulnerable. NTP is prone to a predictable random number generator weakness. \nAn attacker can exploit this issue to guess generated MD5 keys that could then be used to spoof an NTP client or server. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n=====================================================================\n Red Hat Security Advisory\n\nSynopsis: Important: ntp security update\nAdvisory ID: RHSA-2015:0104-01\nProduct: Red Hat Enterprise Linux\nAdvisory URL: https://rhn.redhat.com/errata/RHSA-2015-0104.html\nIssue date: 2015-01-28\nCVE Names: CVE-2014-9293 CVE-2014-9294 CVE-2014-9295 \n CVE-2014-9296 \n=====================================================================\n\n1. Summary:\n\nUpdated ntp packages that fix several security issues are now available for\nRed Hat Enterprise Linux 6.5 Extended Update Support. \n\nRed Hat Product Security has rated this update as having Important security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux Compute Node Optional EUS (v. 6.5) - noarch, x86_64\nRed Hat Enterprise Linux HPC Node EUS (v. 6.5) - x86_64\nRed Hat Enterprise Linux Server EUS (v. 6.5) - i386, ppc64, s390x, x86_64\nRed Hat Enterprise Linux Server Optional EUS (v. 6.5) - i386, noarch, ppc64, s390x, x86_64\n\n3. \n\nMultiple buffer overflow flaws were discovered in ntpd\u0027s crypto_recv(),\nctl_putdata(), and configure() functions. Note: the crypto_recv() flaw requires non-default\nconfigurations to be active, while the ctl_putdata() flaw, by default, can\nonly be exploited via local attackers, and the configure() flaw requires\nadditional authentication to exploit. (CVE-2014-9295)\n\nIt was found that ntpd automatically generated weak keys for its internal\nuse if no ntpdc request authentication key was specified in the ntp.conf\nconfiguration file. A remote attacker able to match the configured IP\nrestrictions could guess the generated key, and possibly use it to send\nntpdc query or configuration requests. (CVE-2014-9293)\n\nIt was found that ntp-keygen used a weak method for generating MD5 keys. Note: it is\nrecommended to regenerate any MD5 keys that had explicitly been generated\nwith ntp-keygen; the default installation does not contain such keys. \n(CVE-2014-9294)\n\nA missing return statement in the receive() function could potentially\nallow a remote attacker to bypass NTP\u0027s authentication mechanism. \n(CVE-2014-9296)\n\nAll ntp users are advised to upgrade to this updated package, which\ncontains backported patches to resolve these issues. After installing the\nupdate, the ntpd daemon will restart automatically. \n\n4. Solution:\n\nBefore applying this update, make sure all previously released errata \nrelevant to your system have been applied. \n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at \nhttps://access.redhat.com/articles/11258\n\n5. Bugs fixed (https://bugzilla.redhat.com/):\n\n1176032 - CVE-2014-9293 ntp: automatic generation of weak default key in config_auth()\n1176035 - CVE-2014-9294 ntp: ntp-keygen uses weak random number generator and seed when generating MD5 keys\n1176037 - CVE-2014-9295 ntp: Multiple buffer overflows via specially-crafted packets\n1176040 - CVE-2014-9296 ntp: receive() missing return on error\n\n6. Package List:\n\nRed Hat Enterprise Linux HPC Node EUS (v. 6.5):\n\nSource:\nntp-4.2.6p5-2.el6_5.src.rpm\n\nx86_64:\nntp-4.2.6p5-2.el6_5.x86_64.rpm\nntp-debuginfo-4.2.6p5-2.el6_5.x86_64.rpm\nntpdate-4.2.6p5-2.el6_5.x86_64.rpm\n\nRed Hat Enterprise Linux Compute Node Optional EUS (v. 6.5):\n\nSource:\nntp-4.2.6p5-2.el6_5.src.rpm\n\nnoarch:\nntp-doc-4.2.6p5-2.el6_5.noarch.rpm\n\nx86_64:\nntp-debuginfo-4.2.6p5-2.el6_5.x86_64.rpm\nntp-perl-4.2.6p5-2.el6_5.x86_64.rpm\n\nRed Hat Enterprise Linux Server EUS (v. 6.5):\n\nSource:\nntp-4.2.6p5-2.el6_5.src.rpm\n\ni386:\nntp-4.2.6p5-2.el6_5.i686.rpm\nntp-debuginfo-4.2.6p5-2.el6_5.i686.rpm\nntpdate-4.2.6p5-2.el6_5.i686.rpm\n\nppc64:\nntp-4.2.6p5-2.el6_5.ppc64.rpm\nntp-debuginfo-4.2.6p5-2.el6_5.ppc64.rpm\nntpdate-4.2.6p5-2.el6_5.ppc64.rpm\n\ns390x:\nntp-4.2.6p5-2.el6_5.s390x.rpm\nntp-debuginfo-4.2.6p5-2.el6_5.s390x.rpm\nntpdate-4.2.6p5-2.el6_5.s390x.rpm\n\nx86_64:\nntp-4.2.6p5-2.el6_5.x86_64.rpm\nntp-debuginfo-4.2.6p5-2.el6_5.x86_64.rpm\nntpdate-4.2.6p5-2.el6_5.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional EUS (v. 6.5):\n\nSource:\nntp-4.2.6p5-2.el6_5.src.rpm\n\ni386:\nntp-debuginfo-4.2.6p5-2.el6_5.i686.rpm\nntp-perl-4.2.6p5-2.el6_5.i686.rpm\n\nnoarch:\nntp-doc-4.2.6p5-2.el6_5.noarch.rpm\n\nppc64:\nntp-debuginfo-4.2.6p5-2.el6_5.ppc64.rpm\nntp-perl-4.2.6p5-2.el6_5.ppc64.rpm\n\ns390x:\nntp-debuginfo-4.2.6p5-2.el6_5.s390x.rpm\nntp-perl-4.2.6p5-2.el6_5.s390x.rpm\n\nx86_64:\nntp-debuginfo-4.2.6p5-2.el6_5.x86_64.rpm\nntp-perl-4.2.6p5-2.el6_5.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security. Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n7. References:\n\nhttps://access.redhat.com/security/cve/CVE-2014-9293\nhttps://access.redhat.com/security/cve/CVE-2014-9294\nhttps://access.redhat.com/security/cve/CVE-2014-9295\nhttps://access.redhat.com/security/cve/CVE-2014-9296\nhttps://access.redhat.com/security/updates/classification/#important\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2015 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n\niD8DBQFUyTXWXlSAg2UNWIIRAsXzAKCilJuJeeWLOABs1xY+ueRvRTSpWACcDhoC\nYQlhn66RRMYQCWymo1OCUoI=\n=4Rft\n-----END PGP SIGNATURE-----\n\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n. \n\nRelease Date: 2015-02-18\nLast Updated: 2015-02-18\n\nPotential Security Impact: Remote execution of code, Denial of Service (DoS),\nor other vulnerabilities\n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nPotential security vulnerabilities have been identified with HP-UX running\nNTP. These could be exploited remotely to execute code, create a Denial of\nService (DoS), or other vulnerabilities. \n\nReferences:\n\nCVE-2014-9293 - Insufficient Entropy in Pseudo-Random Number Generator (PRNG)\n(CWE-332)\nCVE-2014-9294 - Use of Cryptographically Weak PRNG (CWE-338)\nCVE-2014-9295 - Stack Buffer Overflow (CWE-121)\nCVE-2014-9296 - Error Conditions, Return Values, Status Codes (CWE-389)\nCVE-2014-9297 - Improper Check for Unusual or Exceptional Conditions\n(CWE-754)\nSSRT101872\nVU#852879\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \n\nHP-UX B.11.31 running NTP version C.4.2.6.4.0 or previous\nHP-UX B.11.23 running XNTP version 3.5 or previous\n\nBACKGROUND\n\nCVSS 2.0 Base Metrics\n===========================================================\n Reference Base Vector Base Score\nCVE-2014-9293 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5\nCVE-2014-9294 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5\nCVE-2014-9295 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5\nCVE-2014-9296 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0\nCVE-2014-9297 (AV:N/AC:H/Au:N/C:P/I:N/A:N) 2.6\n===========================================================\n Information on CVSS is documented\n in HP Customer Notice: HPSN-2008-002\n\nRESOLUTION\n\nHP has provided the following patch for HP-UX B.11.31. A workaround for HP-UX\nB.11.23 and B.11.11 to temporarily resolve these vulnerabilities follows\nbelow. \n\nThe B.11.31 patch is available from:\nftp://ntp42650:Secure12@h2.usa.hp.com or https://h20392.www2.hp.com/portal/sw\ndepot/displayProductInfo.do?productNumber=HPUX-NTP\n\nMitigation steps for HP-UX B.11.23 and B.11.11 for CVE-2014-9295\n\nRestrict query for server status (Time Service is not affected) from\nntpq/ntpdc by enabling .noquery. using the restrict command in /etc/ntp.conf\nfile. \n\nReference: http://support.ntp.org/bin/view/Main/SecurityNotice\n\nNOTE: This bulletin will be revised when patches for XNTP v3.5 on B.11.23 and\nB.11.11 become available. \n\nMANUAL ACTIONS: No\n\nPRODUCT SPECIFIC INFORMATION\n\nHP-UX Software Assistant: HP-UX Software Assistant is an enhanced application\nthat replaces HP-UX Security Patch Check. It analyzes all Security Bulletins\nissued by HP and lists recommended actions that may apply to a specific HP-UX\nsystem. It can also download patches and create a depot automatically. For\nmore information see: https://www.hp.com/go/swa\n\nThe following text is for use by the HP-UX Software Assistant. \n\nAFFECTED VERSIONS\n\nHP-UX B.11.31\n==================\nNTP.INETSVCS2-BOOT\nNTP.NTP-AUX\nNTP.NTP-RUN\naction: install revision C.4.2.6.5.0 or subsequent\n\nEND AFFECTED VERSIONS\n\nHISTORY\nVersion:1 (rev.1) - 18 February 2015 Initial release\n\nThird Party Security Patches: Third party security patches that are to be\ninstalled on systems running HP software products should be applied in\naccordance with the customer\u0027s patch management policy. \n\nSupport: For issues about implementing the recommendations of this Security\nBulletin, contact normal HP Services support channel. For other issues about\nthe content of this Security Bulletin, send e-mail to security-alert@hp.com. \n\nReport: To report a potential security vulnerability with any HP supported\nproduct, send Email to: security-alert@hp.com\n\nSubscribe: To initiate a subscription to receive future HP Security Bulletin\nalerts via Email:\nhttp://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins\n\nSecurity Bulletin Archive: A list of recently released Security Bulletins is\navailable here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/\n\nSoftware Product Category: The Software Product Category is represented in\nthe title by the two characters following HPSB. \n\n3C = 3COM\n3P = 3rd Party Software\nGN = HP General Software\nHF = HP Hardware and Firmware\nMP = MPE/iX\nMU = Multi-Platform Software\nNS = NonStop Servers\nOV = OpenVMS\nPI = Printing and Imaging\nPV = ProCurve\nST = Storage Software\nTU = Tru64 UNIX\nUX = HP-UX\n\nCopyright 2015 Hewlett-Packard Development Company, L.P. \nHewlett-Packard Company shall not be liable for technical or editorial errors\nor omissions contained herein. The information provided is provided \"as is\"\nwithout warranty of any kind. To the extent permitted by law, neither HP or\nits affiliates, subcontractors or suppliers will be liable for\nincidental,special or consequential damages including downtime cost; lost\nprofits; damages relating to the procurement of substitute products or\nservices; or damages for loss of data, or software restoration. The\ninformation in this document is subject to change without notice. \nHewlett-Packard Company and the names of Hewlett-Packard products referenced\nherein are trademarks of Hewlett-Packard Company in the United States and\nother countries. Other product and company names mentioned herein may be\ntrademarks of their respective owners. \n\nThe two patches are available from the HP Support Center (HPSC). \n\nReference: http://support.ntp.org/bin/view/Main/SecurityNotice\n\nMANUAL ACTIONS: Yes - Update\n\nIf patch installation on B.11.11 or B.11.23 is not possible, mitigate with\nstep above. \n \n A remote unauthenticated attacker may craft special packets that\n trigger buffer overflows in the ntpd functions crypto_recv() (when\n using autokey authentication), ctl_putdata(), and configure(). \n \n A section of code in ntpd handling a rare error is missing a return\n statement, therefore processing did not stop when the error was\n encountered. This situation may be exploitable by an attacker\n (CVE-2014-9296). \n \n Stephen Roettger of the Google Security Team, Sebastian Krahmer of\n the SUSE Security Team and Harlan Stenn of Network Time Foundation\n discovered that the length value in extension fields is not properly\n validated in several code paths in ntp_crypto.c, which could lead to\n information leakage or denial of service (CVE-2014-9297). \n \n Stephen Roettger of the Google Security Team reported that ACLs based\n on IPv6 ::1 (localhost) addresses can be bypassed (CVE-2014-9298). \n _______________________________________________________________________\n\n References:\n\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9293\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9294\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9295\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9296\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9297\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9298\n http://advisories.mageia.org/MGASA-2014-0541.html\n http://advisories.mageia.org/MGASA-2015-0063.html\n _______________________________________________________________________\n\n Updated Packages:\n\n Mandriva Business Server 2/X86_64:\n 8f7d14b95c55bd1de7230cff0c8ea9d7 mbs2/x86_64/ntp-4.2.6p5-16.1.mbs2.x86_64.rpm\n 09063ab11459b1f935809b37c742ff12 mbs2/x86_64/ntp-client-4.2.6p5-16.1.mbs2.x86_64.rpm\n 7a0d0eca35911d9f15b76b474c5512cf mbs2/x86_64/ntp-doc-4.2.6p5-16.1.mbs2.noarch.rpm \n cb0371050702950084ff633ea45c2c5c mbs2/SRPMS/ntp-4.2.6p5-16.1.mbs2.src.rpm\n _______________________________________________________________________\n\n To upgrade automatically use MandrivaUpdate or urpmi. The verification\n of md5 checksums and GPG signatures is performed automatically for you. \n\n All packages are signed by Mandriva for security. Attackers could use this key to\n reconfigure ntpd (or to exploit other vulnerabilities). \n\nThe default ntpd configuration in Debian restricts access to localhost\n(and possible the adjacent network in case of IPv6). \n\nFor the stable distribution (wheezy), these problems have been fixed in\nversion 1:4.2.6.p5+dfsg-2+deb7u1. \n\n\nHere are the details from the Slackware 14.1 ChangeLog:\n+--------------------------+\npatches/packages/ntp-4.2.8-i486-1_slack14.1.txz: Upgraded. \n In addition to bug fixes and enhancements, this release fixes\n several high-severity vulnerabilities discovered by Neel Mehta\n and Stephen Roettger of the Google Security Team. \n For more information, see:\n https://www.kb.cert.org/vuls/id/852879\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9293\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9294\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9295\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9296\n (* Security fix *)\n+--------------------------+\n\n\nWhere to find the new packages:\n+-----------------------------+\n\nThanks to the friendly folks at the OSU Open Source Lab\n(http://osuosl.org) for donating FTP and rsync hosting\nto the Slackware project! :-)\n\nAlso see the \"Get Slack\" section on http://slackware.com for\nadditional mirror sites near you. \n\nUpdated package for Slackware 13.0:\nftp://ftp.slackware.com/pub/slackware/slackware-13.0/patches/packages/ntp-4.2.8-i486-1_slack13.0.txz\n\nUpdated package for Slackware x86_64 13.0:\nftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/packages/ntp-4.2.8-x86_64-1_slack13.0.txz\n\nUpdated package for Slackware 13.1:\nftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/ntp-4.2.8-i486-1_slack13.1.txz\n\nUpdated package for Slackware x86_64 13.1:\nftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/ntp-4.2.8-x86_64-1_slack13.1.txz\n\nUpdated package for Slackware 13.37:\nftp://ftp.slackware.com/pub/slackware/slackware-13.37/patches/packages/ntp-4.2.8-i486-1_slack13.37.txz\n\nUpdated package for Slackware x86_64 13.37:\nftp://ftp.slackware.com/pub/slackware/slackware64-13.37/patches/packages/ntp-4.2.8-x86_64-1_slack13.37.txz\n\nUpdated package for Slackware 14.0:\nftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/ntp-4.2.8-i486-1_slack14.0.txz\n\nUpdated package for Slackware x86_64 14.0:\nftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/ntp-4.2.8-x86_64-1_slack14.0.txz\n\nUpdated package for Slackware 14.1:\nftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/ntp-4.2.8-i486-1_slack14.1.txz\n\nUpdated package for Slackware x86_64 14.1:\nftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/ntp-4.2.8-x86_64-1_slack14.1.txz\n\nUpdated package for Slackware -current:\nftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/ntp-4.2.8-i486-1.txz\n\nUpdated package for Slackware x86_64 -current:\nftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/ntp-4.2.8-x86_64-1.txz\n\n\nMD5 signatures:\n+-------------+\n\nSlackware 13.0 package:\n18d7f09e90cf2434f59d7e9f11478fba ntp-4.2.8-i486-1_slack13.0.txz\n\nSlackware x86_64 13.0 package:\nedd178e3d2636433dd18f52331af17a5 ntp-4.2.8-x86_64-1_slack13.0.txz\n\nSlackware 13.1 package:\n4b6da6fa564b1fe00920d402ff97bd43 ntp-4.2.8-i486-1_slack13.1.txz\n\nSlackware x86_64 13.1 package:\n292ae7dbd3ea593c5e28cbba7c2b71fa ntp-4.2.8-x86_64-1_slack13.1.txz\n\nSlackware 13.37 package:\n294b8197d360f9a3cf8186619b60b73c ntp-4.2.8-i486-1_slack13.37.txz\n\nSlackware x86_64 13.37 package:\n7cd5b63f8371b1cc369bc56e4b4efd5a ntp-4.2.8-x86_64-1_slack13.37.txz\n\nSlackware 14.0 package:\n32eab67538c33e4669bda9200799a497 ntp-4.2.8-i486-1_slack14.0.txz\n\nSlackware x86_64 14.0 package:\n33ecf4845fa8533a12a98879815bde08 ntp-4.2.8-x86_64-1_slack14.0.txz\n\nSlackware 14.1 package:\nf2b45a45c846a909ae201176ce359939 ntp-4.2.8-i486-1_slack14.1.txz\n\nSlackware x86_64 14.1 package:\n12d7ab6e2541af4d1282621d3773e7f7 ntp-4.2.8-x86_64-1_slack14.1.txz\n\nSlackware -current package:\n5b2150cee9840d8bb547098cccde879a n/ntp-4.2.8-i486-1.txz\n\nSlackware x86_64 -current package:\n9ce09c5d6a60d3e2117988e4551e4af1 n/ntp-4.2.8-x86_64-1.txz\n\n\nInstallation instructions:\n+------------------------+\n\nUpgrade the package as root:\n# upgradepkg ntp-4.2.8-i486-1_slack14.1.txz\n\nThen, restart the NTP daemon:\n\n# sh /etc/rc.d/rc.ntpd restart\n\n\n+-----+\n\nSlackware Linux Security Team\nhttp://slackware.com/gpg-key\nsecurity@slackware.com\n\n+------------------------------------------------------------------------+\n| To leave the slackware-security mailing list: |\n+------------------------------------------------------------------------+\n| Send an email to majordomo@slackware.com with this text in the body of |\n| the email message: |\n| |\n| unsubscribe slackware-security |\n| |\n| You will get a confirmation message back containing instructions to |\n| complete the process. Please do not reply to this email address. \n\nReferences:\n\nCVE-2014-9293\nCVE-2014-9294\nCVE-2014-9295\nCVE-2014-9296\nCVE-2013-5211\nSSRT102239\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \n\n Platform\n Patch Kit Name\n\n Alpha IA64 V8.4\n 75-117-380_2015-08-24.BCK\n\n NOTE: Please contact OpenVMS Technical Support to request these patch kits. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nESA-2015-004: EMC M\u0026R (Watch4Net) Multiple Vulnerabilities \n\nEMC Identifier: ESA-2015-004\n\nCVE Identifier: CVE-2015-0513, CVE-2015-0514, CVE-2015-0515, CVE-2015-0516, CVE-2014-4288, CVE-2014-6456, CVE-2014-6457, CVE-2014-6458, CVE-2014-6466, CVE-2014-6468, CVE-2014-6476, CVE-2014-6485, CVE-2014-6492, CVE-2014-6493, CVE-2014-6502, CVE-2014-6503, CVE-2014-6504, CVE-2014-6506, CVE-2014-6511, CVE-2014-6512, CVE-2014-6513, CVE-2014-6515, CVE-2014-6517, CVE-2014-6519, CVE-2014-6527, CVE-2014-6531, CVE-2014-6532, CVE-2014-6558, CVE-2014-6562, CVE-2014-9293, CVE-2014-9294, CVE-2014-9295, CVE-2014-9296, CVE-2014-3618\n\nSeverity Rating: CVSS v2 Base Score: View details below for individual CVSS score for each CVE\n\nAffected products: \n\\x95\tEMC M\u0026R (Watch4Net) versions prior 6.5u1\n\\x95\tEMC ViPR SRM versions prior to 3.6.1\n\nSummary:\nEMC M\u0026R (Watch4Net) is vulnerable to multiple security vulnerabilities that could be potentially exploited by malicious users to compromise the affected system. EMC ViPR SRM is built on EMC M\u0026R platform and is also affected by these vulnerabilities. \n\nDetails:\nThe vulnerabilities include:\n\\x95\tMultiple Oracle Java Runtime Environment (JRE) Vulnerabilities\nCVE Identifiers: CVE-2014-4288, CVE-2014-6456, CVE-2014-6457, CVE-2014-6458, CVE-2014-6466, CVE-2014-6468, CVE-2014-6476, CVE-2014-6485, CVE-2014-6492, CVE-2014-6493, CVE-2014-6502, CVE-2014-6503, CVE-2014-6504, CVE-2014-6506, CVE-2014-6511, CVE-2014-6512, CVE-2014-6513, CVE-2014-6515, CVE-2014-6517, CVE-2014-6519, CVE-2014-6527, CVE-2014-6531, CVE-2014-6532, CVE-2014-6558, CVE-2014-6562. \n\nOracle JRE contains multiple security vulnerabilities. Oracle JRE has been upgraded to 8.0u25 to address these vulnerabilities. See vendor advisory (http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html#AppendixJAVA) for more details. \nCVSS v2 Base Score: Please refer to http://nvd.nist.gov/ for the individual CVSS scores for each CVE listed above. \n\n\\x95\tMultiple Cross-Site Scripting Vulnerabilities\nCVE Identifier: CVE-2015-0513\nSeveral user-supplied fields in the administrative user interface may be potentially exploited by an authenticated privileged malicious user to conduct cross-site-scripting attacks on other authenticated users of the system. \nCVSS v2 Base Score: 6.5 (AV:N/AC:L/Au:S/C:P/I:P/A:P)\n\n\\x95\tInsecure Cryptographic Storage Vulnerability \nCVE Identifier: CVE-2015-0514\nA malicious non-ViPR SRM user with access to an installation of ViPR SRM and knowledge of internal encryption methods could potentially decrypt credentials used for data center discovery. \nCVSS v2 Base Score: 5.7 (AV:A/AC:M/Au:N/C:C/I:N/A:N)\n\n\\x95\tUnrestricted File Upload Vulnerability \nCVE Identifier: CVE-2015-0515\nThis vulnerability may potentially be exploited by an authenticated, privileged malicious user to upload arbitrary files into the file system via the web interface. \nCVSS v2 Base Score: 6 (AV:N/AC:M/Au:S/C:P/I:P/A:P)\n\n\\x95\tPath Traversal Vulnerability\nCVE Identifier: CVE-2015-0516\nThis vulnerability may potentially be exploited by an authenticated, privileged malicious user to download arbitrary files from the file system via the web interface by manipulating the directory structure in the URL. \nCVSS v2 Base Score: 6.8 (AV:N/AC:L/Au:S/C:C/I:N/A:N)\n\n\\x95\tSUSE Procmail Heap Overflow Vulnerability \nCVE Identifier: CVE-2014-3618\nProcmail was updated to fix a heap-overflow in procmail\u0027s formail utility when processing specially-crafted email headers. This issue affects only vApp deployments of the affected software. \nCVSS v2 Base Score: Please refer to http://nvd.nist.gov/ for the CVSS score. \n\n\\x95\tNTP Multiple Vulnerabilities \nCVE Identifier: CVE-2014-9293 CVE-2014-9294 CVE-2014-9295 CVE-2014-9296\nNTP was updated to fix multiple vulnerabilities. See vendor advisory http://support.ntp.org/bin/view/Main/SecurityNotice for more details. These issues affect only vApp deployments of the affected software. \nCVSS v2 Base Score: Please refer to http://nvd.nist.gov/ for the CVSS scores. \n\n\nResolution:\nThe following version contains the resolution to these issues:\n\\x95\tEMC M\u0026R (Watch4Net) 6.5u1 and later\n\\x95\tEMC ViPR SRM 3.6.1 and later\n\nEMC strongly recommends all customers upgrade at the earliest opportunity. In addition, customers are recommended to review the Security Configuration Guide distributed with the product for specific instructions on secure configurations of the system. \n\nLink to remedies:\nRegistered customers can download upgraded software from support.emc.com at https://support.emc.com/downloads/34247_ViPR-SRM \n \nCredits:\nEMC would like to thank Han Sahin of Securify B.V. (han.sahin@securify.nl) for reporting CVE-2015-0513 and CVE-2015-0514",
"sources": [
{
"db": "NVD",
"id": "CVE-2014-9293"
},
{
"db": "CERT/CC",
"id": "VU#852879"
},
{
"db": "BID",
"id": "71761"
},
{
"db": "BID",
"id": "71762"
},
{
"db": "PACKETSTORM",
"id": "130140"
},
{
"db": "PACKETSTORM",
"id": "130481"
},
{
"db": "PACKETSTORM",
"id": "131356"
},
{
"db": "PACKETSTORM",
"id": "131149"
},
{
"db": "PACKETSTORM",
"id": "129680"
},
{
"db": "PACKETSTORM",
"id": "129693"
},
{
"db": "PACKETSTORM",
"id": "133517"
},
{
"db": "PACKETSTORM",
"id": "129683"
},
{
"db": "PACKETSTORM",
"id": "130031"
}
],
"trust": 2.97
},
"external_ids": {
"_id": null,
"data": [
{
"db": "CERT/CC",
"id": "VU#852879",
"trust": 2.5
},
{
"db": "NVD",
"id": "CVE-2014-9293",
"trust": 2.5
},
{
"db": "ICS CERT",
"id": "ICSA-14-353-01",
"trust": 1.1
},
{
"db": "BID",
"id": "71757",
"trust": 1.0
},
{
"db": "SECUNIA",
"id": "62209",
"trust": 1.0
},
{
"db": "MCAFEE",
"id": "SB10103",
"trust": 1.0
},
{
"db": "ICS CERT",
"id": "ICSA-14-353-01A",
"trust": 0.6
},
{
"db": "JUNIPER",
"id": "JSA10663",
"trust": 0.6
},
{
"db": "BID",
"id": "71761",
"trust": 0.3
},
{
"db": "BID",
"id": "71762",
"trust": 0.3
},
{
"db": "PACKETSTORM",
"id": "130140",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "130481",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "131356",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "131149",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "129680",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "129693",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "133517",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "129683",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "130031",
"trust": 0.1
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#852879"
},
{
"db": "BID",
"id": "71761"
},
{
"db": "BID",
"id": "71762"
},
{
"db": "PACKETSTORM",
"id": "130140"
},
{
"db": "PACKETSTORM",
"id": "130481"
},
{
"db": "PACKETSTORM",
"id": "131356"
},
{
"db": "PACKETSTORM",
"id": "131149"
},
{
"db": "PACKETSTORM",
"id": "129680"
},
{
"db": "PACKETSTORM",
"id": "129693"
},
{
"db": "PACKETSTORM",
"id": "133517"
},
{
"db": "PACKETSTORM",
"id": "129683"
},
{
"db": "PACKETSTORM",
"id": "130031"
},
{
"db": "NVD",
"id": "CVE-2014-9293"
}
]
},
"id": "VAR-201412-0615",
"iot": {
"_id": null,
"data": true,
"sources": [
{
"db": "VARIoT devices database",
"id": null
}
],
"trust": 0.38031465625000005
},
"last_update_date": "2026-03-09T21:29:26.941000Z",
"problemtype_data": {
"_id": null,
"data": [
{
"problemtype": "NVD-CWE-Other",
"trust": 1.0
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2014-9293"
}
]
},
"references": {
"_id": null,
"data": [
{
"trust": 2.4,
"url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20141222-ntpd"
},
{
"trust": 2.1,
"url": "http://support.ntp.org/bin/view/main/securitynotice"
},
{
"trust": 1.7,
"url": "http://www.kb.cert.org/vuls/id/852879"
},
{
"trust": 1.6,
"url": "http://lists.ntp.org/pipermail/announce/2014-december/000122.html"
},
{
"trust": 1.6,
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html"
},
{
"trust": 1.3,
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176032"
},
{
"trust": 1.1,
"url": "http://www.ntp.org/downloads.html"
},
{
"trust": 1.1,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-14-353-01"
},
{
"trust": 1.1,
"url": "https://support.apple.com/en-us/ht6601"
},
{
"trust": 1.1,
"url": "http://rhn.redhat.com/errata/rhsa-2015-0104.html"
},
{
"trust": 1.1,
"url": "http://advisories.mageia.org/mgasa-2014-0541.html"
},
{
"trust": 1.1,
"url": "http://rhn.redhat.com/errata/rhsa-2014-2025.html"
},
{
"trust": 1.0,
"url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04790232"
},
{
"trust": 1.0,
"url": "http://marc.info/?l=bugtraq\u0026m=144182594518755\u0026w=2"
},
{
"trust": 1.0,
"url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04916783"
},
{
"trust": 1.0,
"url": "http://bk1.ntp.org/ntp-dev/ntpd/ntp_config.c?page=diffs\u0026rev=4b6089c5kxhxqzqocf0dmxnqqsjouw"
},
{
"trust": 1.0,
"url": "https://www.arista.com/en/support/advisories-notices/security-advisories/1047-security-advisory-8"
},
{
"trust": 1.0,
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=sb10103"
},
{
"trust": 1.0,
"url": "http://bugs.ntp.org/show_bug.cgi?id=2665"
},
{
"trust": 1.0,
"url": "http://secunia.com/advisories/62209"
},
{
"trust": 1.0,
"url": "http://www.securityfocus.com/bid/71757"
},
{
"trust": 1.0,
"url": "http://marc.info/?l=bugtraq\u0026m=142469153211996\u0026w=2"
},
{
"trust": 1.0,
"url": "http://marc.info/?l=bugtraq\u0026m=142853370924302\u0026w=2"
},
{
"trust": 1.0,
"url": "http://www.mandriva.com/security/advisories?name=mdvsa-2015:003"
},
{
"trust": 1.0,
"url": "http://marc.info/?l=bugtraq\u0026m=142590659431171\u0026w=2"
},
{
"trust": 0.9,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-9294"
},
{
"trust": 0.9,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-9293"
},
{
"trust": 0.8,
"url": "http://support.ntp.org/bin/view/support/accessrestrictions#section_6.5.2"
},
{
"trust": 0.8,
"url": "http://www.ntp.org/ntpfaq/ntp-s-algo-crypt.htm"
},
{
"trust": 0.8,
"url": "http://googleprojectzero.blogspot.com/2015/01/finding-and-exploiting-ntpd.html"
},
{
"trust": 0.8,
"url": "https://support.f5.com/kb/en-us/solutions/public/15000/900/sol15936.html"
},
{
"trust": 0.8,
"url": "https://www.freebsd.org/security/advisories/freebsd-sa-15:07.ntp.asc"
},
{
"trust": 0.8,
"url": "https://rhn.redhat.com/errata/rhsa-2014-2024.html"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-9295"
},
{
"trust": 0.7,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-9296"
},
{
"trust": 0.6,
"url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10663\u0026cat=sirt_1\u0026actp=list"
},
{
"trust": 0.6,
"url": "http://www.huawei.com/en/security/psirt/security-bulletins/security-notices/archive/hw-408044.htm"
},
{
"trust": 0.6,
"url": "https://h20564.www2.hp.com/hpsc/doc/public/display?docid=emr_na-c04574882"
},
{
"trust": 0.6,
"url": "https://downloads.avaya.com/css/p8/documents/101006439"
},
{
"trust": 0.6,
"url": "http://support.citrix.com/article/ctx200355"
},
{
"trust": 0.6,
"url": "http://seclists.org/bugtraq/2015/jan/att-97/esa-2015-004.txt"
},
{
"trust": 0.6,
"url": "https://www.freebsd.org/security/advisories/freebsd-sa-14:31.ntp.asc"
},
{
"trust": 0.6,
"url": "https://h20564.www2.hp.com/hpsc/doc/public/display?docid=emr_na-c04582466"
},
{
"trust": 0.6,
"url": "https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c04916783"
},
{
"trust": 0.6,
"url": "http://seclists.org/bugtraq/2015/sep/41"
},
{
"trust": 0.6,
"url": "https://h20564.www2.hp.com/hpsc/doc/public/display?docid=emr_na-c04554677"
},
{
"trust": 0.6,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21966675"
},
{
"trust": 0.6,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21967791"
},
{
"trust": 0.6,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21696755"
},
{
"trust": 0.6,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-14-353-01a"
},
{
"trust": 0.6,
"url": "http://aix.software.ibm.com/aix/efixes/security/ntp_advisory2.asc"
},
{
"trust": 0.6,
"url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1022036"
},
{
"trust": 0.6,
"url": "http://www-01.ibm.com/support/docview.wss?uid=isg1ssrvpoaix71security150210-1549"
},
{
"trust": 0.6,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21696812"
},
{
"trust": 0.6,
"url": "http://www-01.ibm.com/support/docview.wss?uid=nas8n1020645"
},
{
"trust": 0.6,
"url": "https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5097490"
},
{
"trust": 0.6,
"url": "http://www.hitachi.co.jp/products/it/server/security/global/info/vulnerable/ntpd_cve-2014-9293.html"
},
{
"trust": 0.3,
"url": "https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_ntp"
},
{
"trust": 0.3,
"url": "http://www.ntp.org/"
},
{
"trust": 0.3,
"url": "https://downloads.avaya.com/css/p8/documents/101006440"
},
{
"trust": 0.3,
"url": "https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5097113"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1022073"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21698473"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1s1005067"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21699578"
},
{
"trust": 0.3,
"url": "https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5097484"
},
{
"trust": 0.3,
"url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/"
},
{
"trust": 0.3,
"url": "http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins"
},
{
"trust": 0.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-9297"
},
{
"trust": 0.2,
"url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2014-9295"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2014-9294"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/cve/cve-2014-9293"
},
{
"trust": 0.2,
"url": "https://bugzilla.redhat.com/):"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/team/key/"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/articles/11258"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/team/contact/"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"trust": 0.2,
"url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/"
},
{
"trust": 0.2,
"url": "https://www.hp.com/go/swa"
},
{
"trust": 0.2,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-9294"
},
{
"trust": 0.2,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-9296"
},
{
"trust": 0.2,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-9293"
},
{
"trust": 0.2,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-9295"
},
{
"trust": 0.2,
"url": "http://www.debian.org/security/"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/security/cve/cve-2014-9296"
},
{
"trust": 0.1,
"url": "https://h20392.www2.hp.com/portal/sw"
},
{
"trust": 0.1,
"url": "http://h20565.www2.hp.com/portal/site/hpsc?"
},
{
"trust": 0.1,
"url": "https://h20392.www2.hp.com/portal/swdepot/displayproductinfo.do?productnumber"
},
{
"trust": 0.1,
"url": "http://www.mandriva.com/en/support/security/"
},
{
"trust": 0.1,
"url": "http://www.mandriva.com/en/support/security/advisories/"
},
{
"trust": 0.1,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-9297"
},
{
"trust": 0.1,
"url": "http://advisories.mageia.org/mgasa-2015-0063.html"
},
{
"trust": 0.1,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-9298"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-9298"
},
{
"trust": 0.1,
"url": "http://www.debian.org/security/faq"
},
{
"trust": 0.1,
"url": "http://slackware.com"
},
{
"trust": 0.1,
"url": "http://osuosl.org)"
},
{
"trust": 0.1,
"url": "http://slackware.com/gpg-key"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2013-5211"
},
{
"trust": 0.1,
"url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/"
},
{
"trust": 0.1,
"url": "https://support.emc.com/downloads/34247_vipr-srm"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6519"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6511"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6558"
},
{
"trust": 0.1,
"url": "http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html#appendixjava)"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6562"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6517"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-4288"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6532"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6468"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6457"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6531"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6527"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6502"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6493"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6503"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6513"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6506"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6476"
},
{
"trust": 0.1,
"url": "http://nvd.nist.gov/"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6515"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6485"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-3618"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6456"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6466"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6458"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6492"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6512"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-6504"
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#852879"
},
{
"db": "BID",
"id": "71761"
},
{
"db": "BID",
"id": "71762"
},
{
"db": "PACKETSTORM",
"id": "130140"
},
{
"db": "PACKETSTORM",
"id": "130481"
},
{
"db": "PACKETSTORM",
"id": "131356"
},
{
"db": "PACKETSTORM",
"id": "131149"
},
{
"db": "PACKETSTORM",
"id": "129680"
},
{
"db": "PACKETSTORM",
"id": "129693"
},
{
"db": "PACKETSTORM",
"id": "133517"
},
{
"db": "PACKETSTORM",
"id": "129683"
},
{
"db": "PACKETSTORM",
"id": "130031"
},
{
"db": "NVD",
"id": "CVE-2014-9293"
}
]
},
"sources": {
"_id": null,
"data": [
{
"db": "CERT/CC",
"id": "VU#852879",
"ident": null
},
{
"db": "BID",
"id": "71761",
"ident": null
},
{
"db": "BID",
"id": "71762",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "130140",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "130481",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "131356",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "131149",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "129680",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "129693",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "133517",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "129683",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "130031",
"ident": null
},
{
"db": "NVD",
"id": "CVE-2014-9293",
"ident": null
}
]
},
"sources_release_date": {
"_id": null,
"data": [
{
"date": "2014-12-19T00:00:00",
"db": "CERT/CC",
"id": "VU#852879",
"ident": null
},
{
"date": "2014-12-19T00:00:00",
"db": "BID",
"id": "71761",
"ident": null
},
{
"date": "2014-12-19T00:00:00",
"db": "BID",
"id": "71762",
"ident": null
},
{
"date": "2015-01-29T06:07:22",
"db": "PACKETSTORM",
"id": "130140",
"ident": null
},
{
"date": "2015-02-19T19:22:00",
"db": "PACKETSTORM",
"id": "130481",
"ident": null
},
{
"date": "2015-04-09T16:21:15",
"db": "PACKETSTORM",
"id": "131356",
"ident": null
},
{
"date": "2015-03-30T21:48:37",
"db": "PACKETSTORM",
"id": "131149",
"ident": null
},
{
"date": "2014-12-22T17:15:01",
"db": "PACKETSTORM",
"id": "129680",
"ident": null
},
{
"date": "2014-12-23T15:41:03",
"db": "PACKETSTORM",
"id": "129693",
"ident": null
},
{
"date": "2015-09-10T00:10:00",
"db": "PACKETSTORM",
"id": "133517",
"ident": null
},
{
"date": "2014-12-22T17:15:48",
"db": "PACKETSTORM",
"id": "129683",
"ident": null
},
{
"date": "2015-01-20T17:32:22",
"db": "PACKETSTORM",
"id": "130031",
"ident": null
},
{
"date": "2014-12-20T02:59:00.053000",
"db": "NVD",
"id": "CVE-2014-9293",
"ident": null
}
]
},
"sources_update_date": {
"_id": null,
"data": [
{
"date": "2015-10-27T00:00:00",
"db": "CERT/CC",
"id": "VU#852879",
"ident": null
},
{
"date": "2016-10-26T04:13:00",
"db": "BID",
"id": "71761",
"ident": null
},
{
"date": "2016-10-26T09:11:00",
"db": "BID",
"id": "71762",
"ident": null
},
{
"date": "2025-04-12T10:46:40.837000",
"db": "NVD",
"id": "CVE-2014-9293",
"ident": null
}
]
},
"threat_type": {
"_id": null,
"data": "network",
"sources": [
{
"db": "BID",
"id": "71761"
},
{
"db": "BID",
"id": "71762"
}
],
"trust": 0.6
},
"title": {
"_id": null,
"data": "NTP Project Network Time Protocol daemon (ntpd) contains multiple vulnerabilities (Updated)",
"sources": [
{
"db": "CERT/CC",
"id": "VU#852879"
}
],
"trust": 0.8
},
"type": {
"_id": null,
"data": "Input Validation Error",
"sources": [
{
"db": "BID",
"id": "71761"
}
],
"trust": 0.3
}
}
VDE-2022-032
Vulnerability from csaf_aumariestergmbhcokg - Published: 2022-08-09 08:00 - Updated: 2022-08-09 08:00Summary
AUMA: Multiple Vulnerabilities in Automation Runtime NTP Service
Notes
Summary: The SIMA2 Master Station features an NTP service based on ntpd, a reference implementation of the Network Time Protocol (NTP). Affected SIMA2 Master Stations with software version < V2.6 include an outdated version of ntpd which is affected by a large number of vulnerabilities
Mitigation: 1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2
2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:
- Allow NTP traffic to/from trusted NTP clients only
- Monitor the network for malicious NTP traffic going to/coming from the SIMA2
- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)
3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:
- Use trusted NTP servers only
- Allow NTP traffic to/from trusted NTP servers only
- Monitor the network for malicious NTP traffic targeting the SIMA2
- Filter malicious NTP traffic targeting the SIMA2
- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)
Remediation: Upgrade your SIMA2 to software version 2.6 or above. The NTP service of the SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.
ntp_request.c in ntpd in NTP before 4.2.4p8, and 4.2.5, allows remote attackers to cause a denial of service (CPU and bandwidth consumption) by using MODE_PRIVATE to send a spoofed (1) request or (2) response packet that triggers a continuous exchange of MODE_PRIVATE error responses between two NTP daemons.
6.4 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The monlist feature in ntp_request.c in ntpd in NTP before 4.2.7p26 allows remote attackers to cause a denial of service (traffic amplification) via forged (1) REQ_MON_GETLIST or (2) REQ_MON_GETLIST_1 requests, as exploited in the wild in December 2013.
CWE-20 - Improper Input ValidationAffected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The config_auth function in ntpd in NTP before 4.2.7p11, when an auth key is not configured, improperly generates a key, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.
7.5 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
util/ntp-keygen.c in ntp-keygen in NTP before 4.2.7p230 uses a weak RNG seed, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.
7.5 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
Multiple stack-based buffer overflows in ntpd in NTP before 4.2.8 allow remote attackers to execute arbitrary code via a crafted packet, related to (1) the crypto_recv function when the Autokey Authentication feature is used, (2) the ctl_putdata function, and (3) the configure function.
7.5 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The receive function in ntp_proto.c in ntpd in NTP before 4.2.8 continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets.
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntp_crypto.c in ntpd in NTP 4.x before 4.2.8p1, when Autokey Authentication is enabled, allows remote attackers to obtain sensitive information from process memory or cause a denial of service (daemon crash) via a packet containing an extension field with an invalid value for the length of its value field.
5.8 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted packets containing particular autokey operations. NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash). NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash). NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.
6.5 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The ntpd client in NTP 4.x before 4.2.8p4 and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service via a number of crafted "KOD" messages.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
Use-after-free vulnerability in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to possibly execute arbitrary code or cause a denial of service (crash) via crafted packets.
8.8 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to cause a denial of service (infinite loop or crash) by pointing the key file at the log file.
6.5 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
Directory traversal vulnerability in the save_config function in ntpd in ntp_control.c in NTP before 4.2.8p4, when used on systems that do not use '\' or '/' characters for directory separation such as OpenVMS, allows remote authenticated users to overwrite arbitrary files.
6.5 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpq in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted mode 6 response packets.
5.9 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
Buffer overflow in the password management functionality in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted key file.
8.8 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The decodenetnum function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (assertion failure) via a 6 or mode 7 packet containing a long data value.
6.5 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
Crypto-NAK packets in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to bypass authentication.
9.8 (Critical)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p6 and 4.3.x before 4.3.90, when configured in broadcast mode, allows man-in-the-middle attackers to conduct replay attacks by sniffing the network.
6.5 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP 4.x before 4.2.8p6 and 4.3.x before 4.3.90 do not verify peer associations of symmetric keys when authenticating packets, which might allow remote attackers to conduct impersonation attacks via an arbitrary trusted key, aka a "skeleton key."
7.7 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The nextvar function in NTP before 4.2.8p6 and 4.3.x before 4.3.90 does not properly validate the length of its input, which allows an attacker to cause a denial of service (application crash).
6.2 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The ntpq saveconfig command in NTP 4.1.2, 4.2.x before 4.2.8p6, 4.3, 4.3.25, 4.3.70, and 4.3.77 does not properly filter special characters, which allows attackers to cause unspecified impact via a crafted filename.
4.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service (NULL pointer dereference) via a ntpdc reslist command.
5.9 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p6 and 4.3.0 before 4.3.90 allows a remote attackers to cause a denial of service (stack exhaustion) via an ntpdc relist command, which triggers recursive traversal of the restriction list.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service (client-server association tear down) by sending broadcast packets with invalid authentication to a broadcast client.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to bypass the origin timestamp validation via a packet with an origin timestamp set to zero.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpq in NTP before 4.2.8p7 allows remote attackers to obtain origin timestamps and then impersonate peers via unspecified vectors.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The ntpq protocol in NTP before 4.2.8p7 allows remote attackers to conduct replay attacks by sniffing the network.
4.8 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The getresponse function in ntpq in NTP versions before 4.2.8p9 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service (infinite loop) via crafted packets with incorrect values.
5.9 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
An off-path attacker can cause a preemptible client association to be demobilized in NTP 4.2.8p4 and earlier and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 by sending a crypto NAK packet to a victim client with a spoofed source address of an existing associated peer. This is true even if authentication is enabled.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
An exploitable vulnerability exists in the message authentication functionality of libntp in ntp 4.2.8p4 and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92. An attacker can send a series of crafted messages to attempt to recover the message digest key.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p7 and 4.3.x before 4.3.92 allows remote attackers to cause a denial of service (prevent subsequent authentication) by leveraging knowledge of the controlkey or requestkey and sending a crafted packet to ntpd, which changes the value of trustedkey, controlkey, or requestkey. NOTE: this vulnerability exists because of a CVE-2016-2516 regression.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The MATCH_ASSOC function in NTP before version 4.2.8p9 and 4.3.x before 4.3.92 allows remote attackers to cause an out-of-bounds reference via an addpeer request with a large hmode value.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (ephemeral-association demobilization) by sending a spoofed crypto-NAK packet with incorrect authentication data at a certain time.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The process_packet function in ntp_proto.c in ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (peer-variable modification) by sending spoofed packets from many source IP addresses in a certain scenario, as demonstrated by triggering an incorrect leap indication.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in NTP 4.x before 4.2.8p8, when autokey is enabled, allows remote attackers to cause a denial of service (peer-variable clearing and association outage) by sending (1) a spoofed crypto-NAK packet or (2) a packet with an incorrect MAC value at a certain time.
5.9 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The broadcast mode replay prevention functionality in ntpd in NTP before 4.2.8p9 allows remote attackers to cause a denial of service (reject broadcast mode packets) via a crafted broadcast mode packet.
4.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p9 allows remote attackers to bypass the origin timestamp protection mechanism via an origin timestamp of zero. NOTE: this vulnerability exists because of a CVE-2015-8138 regression.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p9 does not properly perform the initial sync calculations, which allows remote attackers to unspecified impact via unknown vectors, related to a "root distance that did not include the peer dispersion."
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The read_mru_list function in NTP before 4.2.8p9 allows remote attackers to cause a denial of service (crash) via a crafted mrulist query.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The control mode (mode 6) functionality in ntpd in NTP before 4.2.8p9 allows remote attackers to set or unset traps via a crafted control mode packet.
6.5 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in NTP before 4.2.8p9, when the trap service is enabled, allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted packet.
5.9 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The mx4200_send function in the legacy MX4200 refclock in NTP before 4.2.8p10 and 4.3.x before 4.3.94 does not properly handle the return value of the snprintf function, which allows local users to execute arbitrary code via unspecified vectors, which trigger an out-of-bounds memory write.
7.8 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
Multiple buffer overflows in the ctl_put* functions in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allow remote authenticated users to have unspecified impact via a long variable.
8.8 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
Stack-based buffer overflow in the reslist function in ntpq in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote servers have unspecified impact via a long flagstr variable in a restriction list response.
8.8 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
Buffer overflow in the legacy Datum Programmable Time Server (DPTS) refclock driver in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows local users to have unspecified impact via a crafted /dev/datum device.
7.8 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote authenticated users to cause a denial of service (daemon crash) via an invalid setting in a :config directive, related to the unpeer option.
6.5 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote attackers to cause a denial of service (ntpd crash) via a malformed mode configuration directive.
6.5 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
Stack-based buffer overflow in ntpq and ntpdc of NTP version 4.2.8p11 allows an attacker to achieve code execution or escalate to higher privileges via a long string as the argument for an IPv4 or IPv6 command-line parameter. NOTE: It is unclear whether there are any common situations in which ntpq or ntpdc is used with a command line from an untrusted source.
9.8 (Critical)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The ctl_getitem method in ntpd in ntp-4.2.8p6 before 4.2.8p11 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mode 6 packet with a ntpd instance from 4.2.8p6 through 4.2.8p10.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
Buffer overflow in the decodearr function in ntpq in ntp 4.2.8p6 through 4.2.8p10 allows remote attackers to execute arbitrary code by leveraging an ntpq query and sending a response with a crafted array.
9.8 (Critical)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in ntp 4.2.8p4 before 4.2.8p11 drops bad packets before updating the "received" timestamp, which allows remote attackers to cause a denial of service (disruption) by sending a packet with a zero-origin timestamp causing the association to reset and setting the contents of the packet as the most recent timestamp. This issue is a result of an incomplete fix for CVE-2015-7704.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The protocol engine in ntp 4.2.6 before 4.2.8p11 allows a remote attackers to cause a denial of service (disruption) by continually sending a packet with a zero-origin timestamp and source IP address of the "other side" of an interleaved association causing the victim ntpd to reset its association.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in ntp 4.2.8p10, 4.2.8p11, 4.2.8p12 and 4.2.8p13 allow remote attackers to prevent a broadcast client from synchronizing its clock with a broadcast NTP server via soofed mode 3 and mode 5 packets. The attacker must either be a part of the same broadcast network or control a slave in that broadcast network that can capture certain required packets on the attacker's behalf and send them to the attacker.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP through 4.2.8p12 has a NULL Pointer Dereference.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows an off-path attacker to block unauthenticated synchronization via a server mode packet with a spoofed source IP address, because transmissions are rescheduled even when a packet lacks a valid origin timestamp.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows remote attackers to cause a denial of service (daemon exit or system time change) by predicting transmit timestamps for use in spoofed packets. The victim must be relying on unauthenticated IPv4 time sources. There must be an off-path attacker who can query time from the victim's ntpd instance.
7.4 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in ntp 4.2.8 before 4.2.8p15 and 4.3.x before 4.3.101 allows remote attackers to cause a denial of service (memory consumption) by sending packets, because memory is not freed in situations where a CMAC key is used and associated with a CMAC algorithm in the ntp.keys file.
4.9 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
Memory leak in the CRYPTO_ASSOC function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (memory consumption).
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The panic_gate check in NTP before 4.2.8p5 is only re-enabled after the first change to the system clock that was greater than 128 milliseconds by default, which allows remote attackers to set NTP to an arbitrary time when started with the -g option, or to alter the time by up to 900 seconds otherwise by responding to an unspecified number of requests from trusted sources, and leveraging a resulting denial of service (abort and restart).
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The datalen parameter in the refclock driver in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a negative input value.
9.8 (Critical)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The rate limiting feature in NTP 4.x before 4.2.8p4 and 4.3.x before 4.3.77 allows remote attackers to have unspecified impact via a large number of crafted requests.
9.8 (Critical)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The "pidfile" or "driftfile" directives in NTP ntpd 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77, when ntpd is configured to allow remote configuration, allows remote attackers with an IP address that is allowed to send configuration requests, and with knowledge of the remote configuration password to write to arbitrary files via the :config command.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p9 changes the peer structure to the interface it receives the response from a source, which allows remote attackers to cause a denial of service (prevent communication with a source) by sending a response for a source to an interface the source does not use.
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in NTP before 4.2.8p9 allows remote attackers to cause a denial of service (reject broadcast mode packets) via the poll interval in a broadcast packet.
4.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p9 rate limits responses received from the configured sources when rate limiting for all associations is enabled, which allows remote attackers to cause a denial of service (prevent responses from the sources) by sending responses with a spoofed source address.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in NTP before 4.2.8p8 allows remote attackers to cause a denial of service (daemon crash) via a crypto-NAK packet. NOTE: this vulnerability exists because of an incorrect fix for CVE-2016-1547.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (interleaved-mode transition and time change) via a spoofed broadcast packet. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-1548.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in NTP before 4.2.8p7 and 4.3.x before 4.3.92 allows remote attackers to cause a denial of service (ntpd abort) by a large request data value, which triggers the ctl_getitem function to return a NULL value.
5.9 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p7 and 4.3.x before 4.3.92, when mode7 is enabled, allows remote attackers to cause a denial of service (ntpd abort) by using the same IP address multiple times in an unconfig directive.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in NTP 4.2.8p3 and NTPsec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 relies on the underlying operating system to protect it from requests that impersonate reference clocks. Because reference clocks are treated like other peers and stored in the same structure, any packet with a source ip address of a reference clock (127.127.1.1 for example) that reaches the receive() function will match that reference clock's peer record and will be treated as a trusted peer. Any system that lacks the typical martian packet filtering which would block these packets is in danger of having its time controlled by an attacker.
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
A malicious authenticated peer can create arbitrarily-many ephemeral associations in order to win the clock selection algorithm in ntpd in NTP 4.2.8p4 and earlier and NTPsec 3e160db8dc248a0bcb053b56a80167dc742d2b74 and a5fb34b9cc89b92a8fef2f459004865c93bb7f92 and modify a victim's clock.
6.5 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
An attacker can spoof a packet from a legitimate ntpd server with an origin timestamp that matches the peer->dst timestamp recorded for that server. After making this switch, the client in NTP 4.2.8p4 and earlier and NTPSec aa48d001683e5b791a743ec9c575aaf7d867a2b0c will reject all future legitimate server responses. It is possible to force the victim client to move time after the mode has been changed. ntpq gives no indication that the mode has been switched.
7.2 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
References
4 references
Acknowledgments
CERT@VDE
certvde.com
{
"document": {
"acknowledgments": [
{
"organization": "CERT@VDE",
"summary": "coordination",
"urls": [
"https://certvde.com"
]
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-GB",
"notes": [
{
"category": "summary",
"text": "The SIMA2 Master Station features an NTP service based on ntpd, a reference implementation of the Network Time Protocol (NTP). Affected SIMA2 Master Stations with software version \u003c V2.6 include an outdated version of ntpd which is affected by a large number of vulnerabilities",
"title": "Summary"
},
{
"category": "description",
"text": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"title": "Mitigation"
},
{
"category": "description",
"text": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"title": "Remediation"
}
],
"publisher": {
"category": "vendor",
"contact_details": "psirt@auma.com",
"name": "AUMA Riester GmbH \u0026 Co. KG",
"namespace": "https://auma.com"
},
"references": [
{
"category": "self",
"summary": "VDE-2022-032: AUMA: Multiple Vulnerabilities in Automation Runtime NTP Service - HTML",
"url": "https://certvde.com/en/advisories/VDE-2022-032/"
},
{
"category": "self",
"summary": "VDE-2022-032: AUMA: Multiple Vulnerabilities in Automation Runtime NTP Service - CSAF",
"url": "https://auma.csaf-tp.certvde.com/.well-known/csaf/white/2022/vde-2022-032.json"
},
{
"category": "external",
"summary": "AUMA PSIRT",
"url": "https://www.auma.com/en_GB/service/psirt"
},
{
"category": "external",
"summary": "CERT@VDE Security Advisories for AUMA Riester GmbH \u0026 Co. KG",
"url": "https://certvde.com/en/advisories/vendor/auma/"
}
],
"title": "AUMA: Multiple Vulnerabilities in Automation Runtime NTP Service",
"tracking": {
"aliases": [
"VDE-2022-032"
],
"current_release_date": "2022-08-09T08:00:00.000Z",
"generator": {
"date": "2025-05-05T07:36:58.640Z",
"engine": {
"name": "Secvisogram",
"version": "2.5.24"
}
},
"id": "VDE-2022-032",
"initial_release_date": "2022-08-09T08:00:00.000Z",
"revision_history": [
{
"date": "2022-08-09T08:00:00.000Z",
"number": "1",
"summary": "Initial revision."
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV2.6",
"product": {
"name": "SIMA\u00b2 Master Station \u003c V2.6",
"product_id": "CSAFPID-51001"
}
},
{
"category": "product_version",
"name": "V2.6",
"product": {
"name": "SIMA\u00b2 Master Station V2.6",
"product_id": "CSAFPID-52001"
}
}
],
"category": "product_name",
"name": "SIMA\u00b2 Master Station"
}
],
"category": "product_family",
"name": "Software"
}
],
"category": "vendor",
"name": "AUMA"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2009-3563",
"notes": [
{
"category": "description",
"text": "ntp_request.c in ntpd in NTP before 4.2.4p8, and 4.2.5, allows remote attackers to cause a denial of service (CPU and bandwidth consumption) by using MODE_PRIVATE to send a spoofed (1) request or (2) response packet that triggers a continuous exchange of MODE_PRIVATE error responses between two NTP daemons.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.4,
"confidentialityImpact": "NONE",
"environmentalScore": 6.4,
"integrityImpact": "PARTIAL",
"temporalScore": 6.4,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:P",
"version": "2.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2009-3563"
},
{
"cve": "CVE-2013-5211",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "The monlist feature in ntp_request.c in ntpd in NTP before 4.2.7p26 allows remote attackers to cause a denial of service (traffic amplification) via forged (1) REQ_MON_GETLIST or (2) REQ_MON_GETLIST_1 requests, as exploited in the wild in December 2013.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5,
"confidentialityImpact": "NONE",
"environmentalScore": 5,
"integrityImpact": "NONE",
"temporalScore": 5,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2013-5211"
},
{
"cve": "CVE-2014-9293",
"notes": [
{
"category": "description",
"text": "The config_auth function in ntpd in NTP before 4.2.7p11, when an auth key is not configured, improperly generates a key, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"environmentalScore": 7.5,
"integrityImpact": "PARTIAL",
"temporalScore": 7.5,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2014-9293"
},
{
"cve": "CVE-2014-9294",
"notes": [
{
"category": "description",
"text": "util/ntp-keygen.c in ntp-keygen in NTP before 4.2.7p230 uses a weak RNG seed, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"environmentalScore": 7.5,
"integrityImpact": "PARTIAL",
"temporalScore": 7.5,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2014-9294"
},
{
"cve": "CVE-2014-9295",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "description",
"text": "Multiple stack-based buffer overflows in ntpd in NTP before 4.2.8 allow remote attackers to execute arbitrary code via a crafted packet, related to (1) the crypto_recv function when the Autokey Authentication feature is used, (2) the ctl_putdata function, and (3) the configure function.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"environmentalScore": 7.5,
"integrityImpact": "PARTIAL",
"temporalScore": 7.5,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2014-9295"
},
{
"cve": "CVE-2014-9296",
"notes": [
{
"category": "description",
"text": "The receive function in ntp_proto.c in ntpd in NTP before 4.2.8 continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5,
"confidentialityImpact": "NONE",
"environmentalScore": 5,
"integrityImpact": "NONE",
"temporalScore": 5,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2014-9296"
},
{
"cve": "CVE-2014-9750",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "ntp_crypto.c in ntpd in NTP 4.x before 4.2.8p1, when Autokey Authentication is enabled, allows remote attackers to obtain sensitive information from process memory or cause a denial of service (daemon crash) via a packet containing an extension field with an invalid value for the length of its value field.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.8,
"confidentialityImpact": "PARTIAL",
"environmentalScore": 5.8,
"integrityImpact": "NONE",
"temporalScore": 5.8,
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P",
"version": "2.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2014-9750"
},
{
"cve": "CVE-2015-7691",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted packets containing particular autokey operations. NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7691"
},
{
"cve": "CVE-2015-7692",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash). NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7692"
},
{
"cve": "CVE-2015-7702",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash). NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7702"
},
{
"cve": "CVE-2015-7704",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "The ntpd client in NTP 4.x before 4.2.8p4 and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service via a number of crafted \"KOD\" messages.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7704"
},
{
"cve": "CVE-2015-7849",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "description",
"text": "Use-after-free vulnerability in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to possibly execute arbitrary code or cause a denial of service (crash) via crafted packets.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7849"
},
{
"cve": "CVE-2015-7850",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"notes": [
{
"category": "description",
"text": "ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to cause a denial of service (infinite loop or crash) by pointing the key file at the log file.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7850"
},
{
"cve": "CVE-2015-7851",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "description",
"text": "Directory traversal vulnerability in the save_config function in ntpd in ntp_control.c in NTP before 4.2.8p4, when used on systems that do not use \u0027\\\u0027 or \u0027/\u0027 characters for directory separation such as OpenVMS, allows remote authenticated users to overwrite arbitrary files.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7851"
},
{
"cve": "CVE-2015-7852",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "ntpq in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted mode 6 response packets.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.9,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.9,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7852"
},
{
"cve": "CVE-2015-7854",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"notes": [
{
"category": "description",
"text": "Buffer overflow in the password management functionality in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted key file.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7854"
},
{
"cve": "CVE-2015-7855",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "The decodenetnum function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (assertion failure) via a 6 or mode 7 packet containing a long data value.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7855"
},
{
"cve": "CVE-2015-7871",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"notes": [
{
"category": "description",
"text": "Crypto-NAK packets in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to bypass authentication.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.8,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.8,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7871"
},
{
"cve": "CVE-2015-7973",
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p6 and 4.3.x before 4.3.90, when configured in broadcast mode, allows man-in-the-middle attackers to conduct replay attacks by sniffing the network.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7973"
},
{
"cve": "CVE-2015-7974",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"notes": [
{
"category": "description",
"text": "NTP 4.x before 4.2.8p6 and 4.3.x before 4.3.90 do not verify peer associations of symmetric keys when authenticating packets, which might allow remote attackers to conduct impersonation attacks via an arbitrary trusted key, aka a \"skeleton key.\"",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.7,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"temporalScore": 7.7,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7974"
},
{
"cve": "CVE-2015-7975",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "description",
"text": "The nextvar function in NTP before 4.2.8p6 and 4.3.x before 4.3.90 does not properly validate the length of its input, which allows an attacker to cause a denial of service (application crash).",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.2,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 6.2,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7975"
},
{
"cve": "CVE-2015-7976",
"notes": [
{
"category": "description",
"text": "The ntpq saveconfig command in NTP 4.1.2, 4.2.x before 4.2.8p6, 4.3, 4.3.25, 4.3.70, and 4.3.77 does not properly filter special characters, which allows attackers to cause unspecified impact via a crafted filename.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 4.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 4.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7976"
},
{
"cve": "CVE-2015-7977",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "description",
"text": "ntpd in NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service (NULL pointer dereference) via a ntpdc reslist command.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.9,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.9,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7977"
},
{
"cve": "CVE-2015-7978",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p6 and 4.3.0 before 4.3.90 allows a remote attackers to cause a denial of service (stack exhaustion) via an ntpdc relist command, which triggers recursive traversal of the restriction list.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7978"
},
{
"cve": "CVE-2015-7979",
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service (client-server association tear down) by sending broadcast packets with invalid authentication to a broadcast client.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7979"
},
{
"cve": "CVE-2015-8138",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to bypass the origin timestamp validation via a packet with an origin timestamp set to zero.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-8138"
},
{
"cve": "CVE-2015-8139",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"notes": [
{
"category": "description",
"text": "ntpq in NTP before 4.2.8p7 allows remote attackers to obtain origin timestamps and then impersonate peers via unspecified vectors.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-8139"
},
{
"cve": "CVE-2015-8140",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"notes": [
{
"category": "description",
"text": "The ntpq protocol in NTP before 4.2.8p7 allows remote attackers to conduct replay attacks by sniffing the network.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 4.8,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 4.8,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-8140"
},
{
"cve": "CVE-2015-8158",
"notes": [
{
"category": "description",
"text": "The getresponse function in ntpq in NTP versions before 4.2.8p9 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service (infinite loop) via crafted packets with incorrect values.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.9,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.9,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-8158"
},
{
"cve": "CVE-2016-1547",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "An off-path attacker can cause a preemptible client association to be demobilized in NTP 4.2.8p4 and earlier and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 by sending a crypto NAK packet to a victim client with a spoofed source address of an existing associated peer. This is true even if authentication is enabled.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-1547"
},
{
"cve": "CVE-2016-1550",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "description",
"text": "An exploitable vulnerability exists in the message authentication functionality of libntp in ntp 4.2.8p4 and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92. An attacker can send a series of crafted messages to attempt to recover the message digest key.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-1550"
},
{
"cve": "CVE-2016-2517",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p7 and 4.3.x before 4.3.92 allows remote attackers to cause a denial of service (prevent subsequent authentication) by leveraging knowledge of the controlkey or requestkey and sending a crafted packet to ntpd, which changes the value of trustedkey, controlkey, or requestkey. NOTE: this vulnerability exists because of a CVE-2016-2516 regression.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-2517"
},
{
"cve": "CVE-2016-2518",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "description",
"text": "The MATCH_ASSOC function in NTP before version 4.2.8p9 and 4.3.x before 4.3.92 allows remote attackers to cause an out-of-bounds reference via an addpeer request with a large hmode value.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-2518"
},
{
"cve": "CVE-2016-4953",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"notes": [
{
"category": "description",
"text": "ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (ephemeral-association demobilization) by sending a spoofed crypto-NAK packet with incorrect authentication data at a certain time.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-4953"
},
{
"cve": "CVE-2016-4954",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "description",
"text": "The process_packet function in ntp_proto.c in ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (peer-variable modification) by sending spoofed packets from many source IP addresses in a certain scenario, as demonstrated by triggering an incorrect leap indication.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-4954"
},
{
"cve": "CVE-2016-4955",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "description",
"text": "ntpd in NTP 4.x before 4.2.8p8, when autokey is enabled, allows remote attackers to cause a denial of service (peer-variable clearing and association outage) by sending (1) a spoofed crypto-NAK packet or (2) a packet with an incorrect MAC value at a certain time.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.9,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.9,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-4955"
},
{
"cve": "CVE-2016-7427",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "description",
"text": "The broadcast mode replay prevention functionality in ntpd in NTP before 4.2.8p9 allows remote attackers to cause a denial of service (reject broadcast mode packets) via a crafted broadcast mode packet.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 4.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 4.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-7427"
},
{
"cve": "CVE-2016-7431",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p9 allows remote attackers to bypass the origin timestamp protection mechanism via an origin timestamp of zero. NOTE: this vulnerability exists because of a CVE-2015-8138 regression.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-7431"
},
{
"cve": "CVE-2016-7433",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p9 does not properly perform the initial sync calculations, which allows remote attackers to unspecified impact via unknown vectors, related to a \"root distance that did not include the peer dispersion.\"",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-7433"
},
{
"cve": "CVE-2016-7434",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "The read_mru_list function in NTP before 4.2.8p9 allows remote attackers to cause a denial of service (crash) via a crafted mrulist query.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-7434"
},
{
"cve": "CVE-2016-9310",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "description",
"text": "The control mode (mode 6) functionality in ntpd in NTP before 4.2.8p9 allows remote attackers to set or unset traps via a crafted control mode packet.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-9310"
},
{
"cve": "CVE-2016-9311",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "description",
"text": "ntpd in NTP before 4.2.8p9, when the trap service is enabled, allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted packet.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.9,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.9,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-9311"
},
{
"cve": "CVE-2017-6451",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "The mx4200_send function in the legacy MX4200 refclock in NTP before 4.2.8p10 and 4.3.x before 4.3.94 does not properly handle the return value of the snprintf function, which allows local users to execute arbitrary code via unspecified vectors, which trigger an out-of-bounds memory write.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 7.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 7.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2017-6451"
},
{
"cve": "CVE-2017-6458",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "description",
"text": "Multiple buffer overflows in the ctl_put* functions in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allow remote authenticated users to have unspecified impact via a long variable.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2017-6458"
},
{
"cve": "CVE-2017-6460",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "description",
"text": "Stack-based buffer overflow in the reslist function in ntpq in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote servers have unspecified impact via a long flagstr variable in a restriction list response.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2017-6460"
},
{
"cve": "CVE-2017-6462",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "description",
"text": "Buffer overflow in the legacy Datum Programmable Time Server (DPTS) refclock driver in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows local users to have unspecified impact via a crafted /dev/datum device.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 7.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 7.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2017-6462"
},
{
"cve": "CVE-2017-6463",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote authenticated users to cause a denial of service (daemon crash) via an invalid setting in a :config directive, related to the unpeer option.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2017-6463"
},
{
"cve": "CVE-2017-6464",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote attackers to cause a denial of service (ntpd crash) via a malformed mode configuration directive.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2017-6464"
},
{
"cve": "CVE-2018-12327",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "Stack-based buffer overflow in ntpq and ntpdc of NTP version 4.2.8p11 allows an attacker to achieve code execution or escalate to higher privileges via a long string as the argument for an IPv4 or IPv6 command-line parameter. NOTE: It is unclear whether there are any common situations in which ntpq or ntpdc is used with a command line from an untrusted source.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.8,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.8,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2018-12327"
},
{
"cve": "CVE-2018-7182",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "description",
"text": "The ctl_getitem method in ntpd in ntp-4.2.8p6 before 4.2.8p11 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mode 6 packet with a ntpd instance from 4.2.8p6 through 4.2.8p10.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2018-7182"
},
{
"cve": "CVE-2018-7183",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "Buffer overflow in the decodearr function in ntpq in ntp 4.2.8p6 through 4.2.8p10 allows remote attackers to execute arbitrary code by leveraging an ntpq query and sending a response with a crafted array.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.8,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.8,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2018-7183"
},
{
"cve": "CVE-2018-7184",
"notes": [
{
"category": "description",
"text": "ntpd in ntp 4.2.8p4 before 4.2.8p11 drops bad packets before updating the \"received\" timestamp, which allows remote attackers to cause a denial of service (disruption) by sending a packet with a zero-origin timestamp causing the association to reset and setting the contents of the packet as the most recent timestamp. This issue is a result of an incomplete fix for CVE-2015-7704.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2018-7184"
},
{
"cve": "CVE-2018-7185",
"notes": [
{
"category": "description",
"text": "The protocol engine in ntp 4.2.6 before 4.2.8p11 allows a remote attackers to cause a denial of service (disruption) by continually sending a packet with a zero-origin timestamp and source IP address of the \"other side\" of an interleaved association causing the victim ntpd to reset its association.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2018-7185"
},
{
"cve": "CVE-2018-8956",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "ntpd in ntp 4.2.8p10, 4.2.8p11, 4.2.8p12 and 4.2.8p13 allow remote attackers to prevent a broadcast client from synchronizing its clock with a broadcast NTP server via soofed mode 3 and mode 5 packets. The attacker must either be a part of the same broadcast network or control a slave in that broadcast network that can capture certain required packets on the attacker\u0027s behalf and send them to the attacker.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2018-8956"
},
{
"cve": "CVE-2019-8936",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "description",
"text": "NTP through 4.2.8p12 has a NULL Pointer Dereference.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2019-8936"
},
{
"cve": "CVE-2020-11868",
"cwe": {
"id": "CWE-346",
"name": "Origin Validation Error"
},
"notes": [
{
"category": "description",
"text": "ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows an off-path attacker to block unauthenticated synchronization via a server mode packet with a spoofed source IP address, because transmissions are rescheduled even when a packet lacks a valid origin timestamp.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2020-11868"
},
{
"cve": "CVE-2020-13817",
"cwe": {
"id": "CWE-330",
"name": "Use of Insufficiently Random Values"
},
"notes": [
{
"category": "description",
"text": "ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows remote attackers to cause a denial of service (daemon exit or system time change) by predicting transmit timestamps for use in spoofed packets. The victim must be relying on unauthenticated IPv4 time sources. There must be an off-path attacker who can query time from the victim\u0027s ntpd instance.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.4,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.4,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2020-13817"
},
{
"cve": "CVE-2020-15025",
"cwe": {
"id": "CWE-401",
"name": "Missing Release of Memory after Effective Lifetime"
},
"notes": [
{
"category": "description",
"text": "ntpd in ntp 4.2.8 before 4.2.8p15 and 4.3.x before 4.3.101 allows remote attackers to cause a denial of service (memory consumption) by sending packets, because memory is not freed in situations where a CMAC key is used and associated with a CMAC algorithm in the ntp.keys file.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 4.9,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"temporalScore": 4.9,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2020-15025"
},
{
"cve": "CVE-2015-7701",
"cwe": {
"id": "CWE-772",
"name": "Missing Release of Resource after Effective Lifetime"
},
"notes": [
{
"category": "description",
"text": "Memory leak in the CRYPTO_ASSOC function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (memory consumption).",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7701"
},
{
"cve": "CVE-2015-5300",
"notes": [
{
"category": "description",
"text": "The panic_gate check in NTP before 4.2.8p5 is only re-enabled after the first change to the system clock that was greater than 128 milliseconds by default, which allows remote attackers to set NTP to an arbitrary time when started with the -g option, or to alter the time by up to 900 seconds otherwise by responding to an unspecified number of requests from trusted sources, and leveraging a resulting denial of service (abort and restart).",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-5300"
},
{
"cve": "CVE-2015-7853",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"notes": [
{
"category": "description",
"text": "The datalen parameter in the refclock driver in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a negative input value.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.8,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.8,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7853"
},
{
"cve": "CVE-2015-7705",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "The rate limiting feature in NTP 4.x before 4.2.8p4 and 4.3.x before 4.3.77 allows remote attackers to have unspecified impact via a large number of crafted requests.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.8,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.8,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7705"
},
{
"cve": "CVE-2015-7703",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "The \"pidfile\" or \"driftfile\" directives in NTP ntpd 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77, when ntpd is configured to allow remote configuration, allows remote attackers with an IP address that is allowed to send configuration requests, and with knowledge of the remote configuration password to write to arbitrary files via the :config command.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7703"
},
{
"cve": "CVE-2016-7429",
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p9 changes the peer structure to the interface it receives the response from a source, which allows remote attackers to cause a denial of service (prevent communication with a source) by sending a response for a source to an interface the source does not use.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"environmentalScore": 3.7,
"environmentalSeverity": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 3.7,
"temporalSeverity": "LOW",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-7429"
},
{
"cve": "CVE-2016-7428",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "description",
"text": "ntpd in NTP before 4.2.8p9 allows remote attackers to cause a denial of service (reject broadcast mode packets) via the poll interval in a broadcast packet.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 4.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 4.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-7428"
},
{
"cve": "CVE-2016-7426",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p9 rate limits responses received from the configured sources when rate limiting for all associations is enabled, which allows remote attackers to cause a denial of service (prevent responses from the sources) by sending responses with a spoofed source address.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-7426"
},
{
"cve": "CVE-2016-4957",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "description",
"text": "ntpd in NTP before 4.2.8p8 allows remote attackers to cause a denial of service (daemon crash) via a crypto-NAK packet. NOTE: this vulnerability exists because of an incorrect fix for CVE-2016-1547.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-4957"
},
{
"cve": "CVE-2016-4956",
"notes": [
{
"category": "description",
"text": "ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (interleaved-mode transition and time change) via a spoofed broadcast packet. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-1548.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-4956"
},
{
"cve": "CVE-2016-2519",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "description",
"text": "ntpd in NTP before 4.2.8p7 and 4.3.x before 4.3.92 allows remote attackers to cause a denial of service (ntpd abort) by a large request data value, which triggers the ctl_getitem function to return a NULL value.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.9,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.9,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-2519"
},
{
"cve": "CVE-2016-2516",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p7 and 4.3.x before 4.3.92, when mode7 is enabled, allows remote attackers to cause a denial of service (ntpd abort) by using the same IP address multiple times in an unconfig directive.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-2516"
},
{
"cve": "CVE-2016-1551",
"notes": [
{
"category": "description",
"text": "ntpd in NTP 4.2.8p3 and NTPsec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 relies on the underlying operating system to protect it from requests that impersonate reference clocks. Because reference clocks are treated like other peers and stored in the same structure, any packet with a source ip address of a reference clock (127.127.1.1 for example) that reaches the receive() function will match that reference clock\u0027s peer record and will be treated as a trusted peer. Any system that lacks the typical martian packet filtering which would block these packets is in danger of having its time controlled by an attacker.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"environmentalScore": 3.7,
"environmentalSeverity": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 3.7,
"temporalSeverity": "LOW",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-1551"
},
{
"cve": "CVE-2016-1549",
"notes": [
{
"category": "description",
"text": "A malicious authenticated peer can create arbitrarily-many ephemeral associations in order to win the clock selection algorithm in ntpd in NTP 4.2.8p4 and earlier and NTPsec 3e160db8dc248a0bcb053b56a80167dc742d2b74 and a5fb34b9cc89b92a8fef2f459004865c93bb7f92 and modify a victim\u0027s clock.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-1549"
},
{
"cve": "CVE-2016-1548",
"notes": [
{
"category": "description",
"text": "An attacker can spoof a packet from a legitimate ntpd server with an origin timestamp that matches the peer-\u003edst timestamp recorded for that server. After making this switch, the client in NTP 4.2.8p4 and earlier and NTPSec aa48d001683e5b791a743ec9c575aaf7d867a2b0c will reject all future legitimate server responses. It is possible to force the victim client to move time after the mode has been changed. ntpq gives no indication that the mode has been switched.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.2,
"environmentalSeverity": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"temporalScore": 7.2,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-1548"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…