Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2014-9296 (GCVE-0-2014-9296)
Vulnerability from cvelistv5 – Published: 2014-12-20 02:00 – Updated: 2024-08-06 13:40
VLAI
EPSS
Summary
The receive function in ntp_proto.c in ntpd in NTP before 4.2.8 continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
19 references
Date Public
2014-12-19 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T13:40:24.961Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "20141222 Multiple Vulnerabilities in ntpd Affecting Cisco Products",
"tags": [
"vendor-advisory",
"x_refsource_CISCO",
"x_transferred"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141222-ntpd"
},
{
"name": "HPSBGN03277",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142590659431171\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04790232"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10103"
},
{
"name": "71758",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/71758"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://advisories.mageia.org/MGASA-2014-0541.html"
},
{
"name": "VU#852879",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/852879"
},
{
"name": "HPSBUX03240",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142853370924302\u0026w=2"
},
{
"name": "62209",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/62209"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html"
},
{
"name": "RHSA-2015:0104",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2015-0104.html"
},
{
"name": "HPSBOV03505",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=144182594518755\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://bugs.ntp.org/show_bug.cgi?id=2670"
},
{
"name": "SSRT101872",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142853370924302\u0026w=2"
},
{
"name": "openSUSE-SU-2014:1670",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00020.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176040"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://support.ntp.org/bin/view/Main/SecurityNotice"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://bk1.ntp.org/ntp-dev/?PAGE=patch\u0026REV=548ad06feXHK1HlZoY-WZVyynwvwAg"
},
{
"name": "MDVSA-2015:003",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:003"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.arista.com/en/support/advisories-notices/security-advisories/1047-security-advisory-8"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2014-12-19T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "The receive function in ntp_proto.c in ntpd in NTP before 4.2.8 continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-11-05T16:19:23.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "20141222 Multiple Vulnerabilities in ntpd Affecting Cisco Products",
"tags": [
"vendor-advisory",
"x_refsource_CISCO"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141222-ntpd"
},
{
"name": "HPSBGN03277",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142590659431171\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04790232"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10103"
},
{
"name": "71758",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/71758"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://advisories.mageia.org/MGASA-2014-0541.html"
},
{
"name": "VU#852879",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/852879"
},
{
"name": "HPSBUX03240",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142853370924302\u0026w=2"
},
{
"name": "62209",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/62209"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html"
},
{
"name": "RHSA-2015:0104",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2015-0104.html"
},
{
"name": "HPSBOV03505",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=144182594518755\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://bugs.ntp.org/show_bug.cgi?id=2670"
},
{
"name": "SSRT101872",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=142853370924302\u0026w=2"
},
{
"name": "openSUSE-SU-2014:1670",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00020.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176040"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://support.ntp.org/bin/view/Main/SecurityNotice"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://bk1.ntp.org/ntp-dev/?PAGE=patch\u0026REV=548ad06feXHK1HlZoY-WZVyynwvwAg"
},
{
"name": "MDVSA-2015:003",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:003"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.arista.com/en/support/advisories-notices/security-advisories/1047-security-advisory-8"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2014-9296",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The receive function in ntp_proto.c in ntpd in NTP before 4.2.8 continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20141222 Multiple Vulnerabilities in ntpd Affecting Cisco Products",
"refsource": "CISCO",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141222-ntpd"
},
{
"name": "HPSBGN03277",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=142590659431171\u0026w=2"
},
{
"name": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04790232",
"refsource": "CONFIRM",
"url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04790232"
},
{
"name": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10103",
"refsource": "CONFIRM",
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10103"
},
{
"name": "71758",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/71758"
},
{
"name": "http://advisories.mageia.org/MGASA-2014-0541.html",
"refsource": "CONFIRM",
"url": "http://advisories.mageia.org/MGASA-2014-0541.html"
},
{
"name": "VU#852879",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/852879"
},
{
"name": "HPSBUX03240",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=142853370924302\u0026w=2"
},
{
"name": "62209",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/62209"
},
{
"name": "http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html"
},
{
"name": "RHSA-2015:0104",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2015-0104.html"
},
{
"name": "HPSBOV03505",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=144182594518755\u0026w=2"
},
{
"name": "http://bugs.ntp.org/show_bug.cgi?id=2670",
"refsource": "CONFIRM",
"url": "http://bugs.ntp.org/show_bug.cgi?id=2670"
},
{
"name": "SSRT101872",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=142853370924302\u0026w=2"
},
{
"name": "openSUSE-SU-2014:1670",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00020.html"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1176040",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176040"
},
{
"name": "http://support.ntp.org/bin/view/Main/SecurityNotice",
"refsource": "CONFIRM",
"url": "http://support.ntp.org/bin/view/Main/SecurityNotice"
},
{
"name": "http://bk1.ntp.org/ntp-dev/?PAGE=patch\u0026REV=548ad06feXHK1HlZoY-WZVyynwvwAg",
"refsource": "CONFIRM",
"url": "http://bk1.ntp.org/ntp-dev/?PAGE=patch\u0026REV=548ad06feXHK1HlZoY-WZVyynwvwAg"
},
{
"name": "MDVSA-2015:003",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:003"
},
{
"name": "https://www.arista.com/en/support/advisories-notices/security-advisories/1047-security-advisory-8",
"refsource": "MISC",
"url": "https://www.arista.com/en/support/advisories-notices/security-advisories/1047-security-advisory-8"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2014-9296",
"datePublished": "2014-12-20T02:00:00.000Z",
"dateReserved": "2014-12-05T00:00:00.000Z",
"dateUpdated": "2024-08-06T13:40:24.961Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2014-9296",
"date": "2026-06-05",
"epss": "0.24613",
"percentile": "0.96235"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2014-9296\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2014-12-20T02:59:03.837\",\"lastModified\":\"2026-05-06T22:30:45.220\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The receive function in ntp_proto.c in ntpd in NTP before 4.2.8 continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets.\"},{\"lang\":\"es\",\"value\":\"La funci\u00f3n de recepci\u00f3n en ntp_proto.c en ntpd en NTP anterior a 4.2.8 contin\u00faa ejecutando despu\u00e9s de detectar un cierto error de autenticaci\u00f3n, lo que podr\u00eda permitir a un atacante remoto a provocar una asociaci\u00f3n involuntaria mediante paquetes modificados.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-17\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ntp:ntp:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"4.2.7\",\"matchCriteriaId\":\"8E63507D-C475-4379-85A5-185F19BEDCEE\"}]}]}],\"references\":[{\"url\":\"http://advisories.mageia.org/MGASA-2014-0541.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://bk1.ntp.org/ntp-dev/?PAGE=patch\u0026REV=548ad06feXHK1HlZoY-WZVyynwvwAg\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\"]},{\"url\":\"http://bugs.ntp.org/show_bug.cgi?id=2670\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00020.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142590659431171\u0026w=2\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142853370924302\u0026w=2\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=144182594518755\u0026w=2\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2015-0104.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/62209\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://support.ntp.org/bin/view/Main/SecurityNotice\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.kb.cert.org/vuls/id/852879\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2015:003\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/71758\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1176040\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04790232\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10103\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141222-ntpd\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.arista.com/en/support/advisories-notices/security-advisories/1047-security-advisory-8\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://advisories.mageia.org/MGASA-2014-0541.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://bk1.ntp.org/ntp-dev/?PAGE=patch\u0026REV=548ad06feXHK1HlZoY-WZVyynwvwAg\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"http://bugs.ntp.org/show_bug.cgi?id=2670\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00020.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142590659431171\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=142853370924302\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=144182594518755\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2015-0104.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/62209\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://support.ntp.org/bin/view/Main/SecurityNotice\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.kb.cert.org/vuls/id/852879\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2015:003\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/71758\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1176040\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04790232\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10103\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141222-ntpd\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.arista.com/en/support/advisories-notices/security-advisories/1047-security-advisory-8\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
RHSA-2015:0104
Vulnerability from csaf_redhat - Published: 2015-01-28 18:52 - Updated: 2025-11-21 17:51Summary
Red Hat Security Advisory: ntp security update
Severity
Important
Notes
Topic: Updated ntp packages that fix several security issues are now available for
Red Hat Enterprise Linux 6.5 Extended Update Support.
Red Hat Product Security has rated this update as having Important security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.
Details: The Network Time Protocol (NTP) is used to synchronize a computer's time
with a referenced time source.
Multiple buffer overflow flaws were discovered in ntpd's crypto_recv(),
ctl_putdata(), and configure() functions. A remote attacker could use
either of these flaws to send a specially crafted request packet that could
crash ntpd or, potentially, execute arbitrary code with the privileges of
the ntp user. Note: the crypto_recv() flaw requires non-default
configurations to be active, while the ctl_putdata() flaw, by default, can
only be exploited via local attackers, and the configure() flaw requires
additional authentication to exploit. (CVE-2014-9295)
It was found that ntpd automatically generated weak keys for its internal
use if no ntpdc request authentication key was specified in the ntp.conf
configuration file. A remote attacker able to match the configured IP
restrictions could guess the generated key, and possibly use it to send
ntpdc query or configuration requests. (CVE-2014-9293)
It was found that ntp-keygen used a weak method for generating MD5 keys.
This could possibly allow an attacker to guess generated MD5 keys that
could then be used to spoof an NTP client or server. Note: it is
recommended to regenerate any MD5 keys that had explicitly been generated
with ntp-keygen; the default installation does not contain such keys.
(CVE-2014-9294)
A missing return statement in the receive() function could potentially
allow a remote attacker to bypass NTP's authentication mechanism.
(CVE-2014-9296)
All ntp users are advised to upgrade to this updated package, which
contains backported patches to resolve these issues. After installing the
update, the ntpd daemon will restart automatically.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
It was found that ntpd automatically generated weak keys for its internal use if no ntpdc request authentication key was specified in the ntp.conf configuration file. A remote attacker able to match the configured IP restrictions could guess the generated key, and possibly use it to send ntpdc query or configuration requests.
4.0 ()
Affected products
Fixed
72 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
It was found that ntp-keygen used a weak method for generating MD5 keys. This could possibly allow an attacker to guess generated MD5 keys that could then be used to spoof an NTP client or server. Note: it is recommended to regenerate any MD5 keys that had explicitly been generated with ntp-keygen; the default installation does not contain such keys.
4.0 ()
Affected products
Fixed
72 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Multiple buffer overflow flaws were discovered in ntpd's crypto_recv(), ctl_putdata(), and configure() functions. A remote attacker could use either of these flaws to send a specially crafted request packet that could crash ntpd or, potentially, execute arbitrary code with the privileges of the ntp user. Note: the crypto_recv() flaw requires non default configurations to be active, while the ctl_putdata() flaw, by default, can only be exploited via local attackers, and the configure() flaw requires additional authentication to exploit.
6.8 ()
Affected products
Fixed
72 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A missing return statement in the receive() function could potentially allow a remote attacker to bypass NTP's authentication mechanism.
5.0 ()
Affected products
Fixed
72 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Low
References
28 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated ntp packages that fix several security issues are now available for \nRed Hat Enterprise Linux 6.5 Extended Update Support.\n\nRed Hat Product Security has rated this update as having Important security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Network Time Protocol (NTP) is used to synchronize a computer\u0027s time\nwith a referenced time source.\n\nMultiple buffer overflow flaws were discovered in ntpd\u0027s crypto_recv(),\nctl_putdata(), and configure() functions. A remote attacker could use\neither of these flaws to send a specially crafted request packet that could\ncrash ntpd or, potentially, execute arbitrary code with the privileges of\nthe ntp user. Note: the crypto_recv() flaw requires non-default\nconfigurations to be active, while the ctl_putdata() flaw, by default, can\nonly be exploited via local attackers, and the configure() flaw requires\nadditional authentication to exploit. (CVE-2014-9295)\n\nIt was found that ntpd automatically generated weak keys for its internal\nuse if no ntpdc request authentication key was specified in the ntp.conf\nconfiguration file. A remote attacker able to match the configured IP\nrestrictions could guess the generated key, and possibly use it to send\nntpdc query or configuration requests. (CVE-2014-9293)\n\nIt was found that ntp-keygen used a weak method for generating MD5 keys.\nThis could possibly allow an attacker to guess generated MD5 keys that\ncould then be used to spoof an NTP client or server. Note: it is\nrecommended to regenerate any MD5 keys that had explicitly been generated\nwith ntp-keygen; the default installation does not contain such keys.\n(CVE-2014-9294)\n\nA missing return statement in the receive() function could potentially\nallow a remote attacker to bypass NTP\u0027s authentication mechanism.\n(CVE-2014-9296)\n\nAll ntp users are advised to upgrade to this updated package, which\ncontains backported patches to resolve these issues. After installing the\nupdate, the ntpd daemon will restart automatically.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2015:0104",
"url": "https://access.redhat.com/errata/RHSA-2015:0104"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1176032",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176032"
},
{
"category": "external",
"summary": "1176035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176035"
},
{
"category": "external",
"summary": "1176037",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176037"
},
{
"category": "external",
"summary": "1176040",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176040"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0104.json"
}
],
"title": "Red Hat Security Advisory: ntp security update",
"tracking": {
"current_release_date": "2025-11-21T17:51:28+00:00",
"generator": {
"date": "2025-11-21T17:51:28+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2015:0104",
"initial_release_date": "2015-01-28T18:52:05+00:00",
"revision_history": [
{
"date": "2015-01-28T18:52:05+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2015-01-28T18:52:05+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:51:28+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:6.5::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product": {
"name": "Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:6.5::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product": {
"name": "Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:6.5::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:6.5::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "ntpdate-0:4.2.6p5-2.el6_5.i686",
"product": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.i686",
"product_id": "ntpdate-0:4.2.6p5-2.el6_5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntpdate@4.2.6p5-2.el6_5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"product": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"product_id": "ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp-debuginfo@4.2.6p5-2.el6_5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "ntp-0:4.2.6p5-2.el6_5.i686",
"product": {
"name": "ntp-0:4.2.6p5-2.el6_5.i686",
"product_id": "ntp-0:4.2.6p5-2.el6_5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp@4.2.6p5-2.el6_5?arch=i686"
}
}
},
{
"category": "product_version",
"name": "ntp-perl-0:4.2.6p5-2.el6_5.i686",
"product": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.i686",
"product_id": "ntp-perl-0:4.2.6p5-2.el6_5.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp-perl@4.2.6p5-2.el6_5?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"product": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"product_id": "ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntpdate@4.2.6p5-2.el6_5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"product": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"product_id": "ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp-debuginfo@4.2.6p5-2.el6_5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ntp-0:4.2.6p5-2.el6_5.x86_64",
"product": {
"name": "ntp-0:4.2.6p5-2.el6_5.x86_64",
"product_id": "ntp-0:4.2.6p5-2.el6_5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp@4.2.6p5-2.el6_5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"product": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"product_id": "ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp-perl@4.2.6p5-2.el6_5?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "ntpdate-0:4.2.6p5-2.el6_5.s390x",
"product": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.s390x",
"product_id": "ntpdate-0:4.2.6p5-2.el6_5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntpdate@4.2.6p5-2.el6_5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"product": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"product_id": "ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp-debuginfo@4.2.6p5-2.el6_5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "ntp-0:4.2.6p5-2.el6_5.s390x",
"product": {
"name": "ntp-0:4.2.6p5-2.el6_5.s390x",
"product_id": "ntp-0:4.2.6p5-2.el6_5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp@4.2.6p5-2.el6_5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"product": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"product_id": "ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp-perl@4.2.6p5-2.el6_5?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"product": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"product_id": "ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntpdate@4.2.6p5-2.el6_5?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"product": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"product_id": "ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp-debuginfo@4.2.6p5-2.el6_5?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "ntp-0:4.2.6p5-2.el6_5.ppc64",
"product": {
"name": "ntp-0:4.2.6p5-2.el6_5.ppc64",
"product_id": "ntp-0:4.2.6p5-2.el6_5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp@4.2.6p5-2.el6_5?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"product": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"product_id": "ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp-perl@4.2.6p5-2.el6_5?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "ntp-0:4.2.6p5-2.el6_5.src",
"product": {
"name": "ntp-0:4.2.6p5-2.el6_5.src",
"product_id": "ntp-0:4.2.6p5-2.el6_5.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp@4.2.6p5-2.el6_5?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"product": {
"name": "ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"product_id": "ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ntp-doc@4.2.6p5-2.el6_5?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.src as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.src",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-0:4.2.6p5-2.el6_5.noarch as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch"
},
"product_reference": "ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.5)",
"product_id": "6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6ComputeNode-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.src as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.src",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-0:4.2.6p5-2.el6_5.noarch as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch"
},
"product_reference": "ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5)",
"product_id": "6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.src as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.src",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-0:4.2.6p5-2.el6_5.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch"
},
"product_reference": "ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.5)",
"product_id": "6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6Server-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.src as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.src",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-doc-0:4.2.6p5-2.el6_5.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch"
},
"product_reference": "ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntp-perl-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.i686 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.i686",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.s390x as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.s390x",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ntpdate-0:4.2.6p5-2.el6_5.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.5)",
"product_id": "6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
},
"product_reference": "ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-9293",
"cwe": {
"id": "CWE-338",
"name": "Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)"
},
"discovery_date": "2014-12-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1176032"
}
],
"notes": [
{
"category": "description",
"text": "It was found that ntpd automatically generated weak keys for its internal use if no ntpdc request authentication key was specified in the ntp.conf configuration file. A remote attacker able to match the configured IP restrictions could guess the generated key, and possibly use it to send ntpdc query or configuration requests.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ntp: automatic generation of weak default key in config_auth()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-9293"
},
{
"category": "external",
"summary": "RHBZ#1176032",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176032"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-9293",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9293"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-9293",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-9293"
},
{
"category": "external",
"summary": "http://support.ntp.org/bin/view/Main/SecurityNotice#Weak_default_key_in_config_auth",
"url": "http://support.ntp.org/bin/view/Main/SecurityNotice#Weak_default_key_in_config_auth"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/1305723",
"url": "https://access.redhat.com/articles/1305723"
}
],
"release_date": "2014-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-01-28T18:52:05+00:00",
"details": "Before applying this update, make sure all previously released errata \nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the \nRed Hat Network to apply this update are available at \nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0104"
},
{
"category": "workaround",
"details": "Issue these commands to explicitly generate a strong key and add it to the\nntpd configuration:\n\n echo trustedkey 65535 \u003e\u003e /etc/ntp.conf\n printf \"65535\\tM\\t%s\\n\" $(tr -cd a-zA-Z0-9 \u003c /dev/urandom | head -c 16) \u003e\u003e /etc/ntp/keys\n\nThe generated key has about 95 bits of entropy.",
"product_ids": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
]
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"products": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ntp: automatic generation of weak default key in config_auth()"
},
{
"cve": "CVE-2014-9294",
"cwe": {
"id": "CWE-338",
"name": "Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)"
},
"discovery_date": "2014-12-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1176035"
}
],
"notes": [
{
"category": "description",
"text": "It was found that ntp-keygen used a weak method for generating MD5 keys. This could possibly allow an attacker to guess generated MD5 keys that could then be used to spoof an NTP client or server. Note: it is recommended to regenerate any MD5 keys that had explicitly been generated with ntp-keygen; the default installation does not contain such keys.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ntp: ntp-keygen uses weak random number generator and seed when generating MD5 keys",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-9294"
},
{
"category": "external",
"summary": "RHBZ#1176035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176035"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-9294",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9294"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-9294",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-9294"
},
{
"category": "external",
"summary": "http://support.ntp.org/bin/view/Main/SecurityNotice#non_cryptographic_random_number",
"url": "http://support.ntp.org/bin/view/Main/SecurityNotice#non_cryptographic_random_number"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/1305723",
"url": "https://access.redhat.com/articles/1305723"
}
],
"release_date": "2014-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-01-28T18:52:05+00:00",
"details": "Before applying this update, make sure all previously released errata \nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the \nRed Hat Network to apply this update are available at \nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0104"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"products": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ntp: ntp-keygen uses weak random number generator and seed when generating MD5 keys"
},
{
"cve": "CVE-2014-9295",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2014-12-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1176037"
}
],
"notes": [
{
"category": "description",
"text": "Multiple buffer overflow flaws were discovered in ntpd\u0027s crypto_recv(), ctl_putdata(), and configure() functions. A remote attacker could use either of these flaws to send a specially crafted request packet that could crash ntpd or, potentially, execute arbitrary code with the privileges of the ntp user. Note: the crypto_recv() flaw requires non default configurations to be active, while the ctl_putdata() flaw, by default, can only be exploited via local attackers, and the configure() flaw requires additional authentication to exploit.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ntp: Multiple buffer overflows via specially-crafted packets",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-9295"
},
{
"category": "external",
"summary": "RHBZ#1176037",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176037"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-9295",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9295"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-9295",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-9295"
},
{
"category": "external",
"summary": "http://support.ntp.org/bin/view/Main/SecurityNotice#Buffer_overflow_in_crypto_recv",
"url": "http://support.ntp.org/bin/view/Main/SecurityNotice#Buffer_overflow_in_crypto_recv"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/1305723",
"url": "https://access.redhat.com/articles/1305723"
}
],
"release_date": "2014-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-01-28T18:52:05+00:00",
"details": "Before applying this update, make sure all previously released errata \nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the \nRed Hat Network to apply this update are available at \nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0104"
},
{
"category": "workaround",
"details": "Add these lines (included by default starting with Red Hat Enterprise Linux 5) to the configuration file /etc/ntp.conf:\n\n restrict default kod nomodify notrap nopeer noquery\n restrict -6 default kod nomodify notrap nopeer noquery\n restrict 127.0.0.1 \n restrict -6 ::1\n\nThis restricts server-type functionality to localhost. If ntpd needs to perform time service for specific hosts and networks, you have to list them with suitable restrict statements.",
"product_ids": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
]
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ntp: Multiple buffer overflows via specially-crafted packets"
},
{
"cve": "CVE-2014-9296",
"cwe": {
"id": "CWE-390",
"name": "Detection of Error Condition Without Action"
},
"discovery_date": "2014-12-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1176040"
}
],
"notes": [
{
"category": "description",
"text": "A missing return statement in the receive() function could potentially allow a remote attacker to bypass NTP\u0027s authentication mechanism.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ntp: receive() missing return on error",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of ntpd as shipped with Red Hat Enterprise Linux 4 and 5. It has been addressed in Red Hat Enterprise Linux 6 and 7 via RHSA-2014:2024.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-9296"
},
{
"category": "external",
"summary": "RHBZ#1176040",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176040"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-9296",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-9296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-9296"
},
{
"category": "external",
"summary": "http://support.ntp.org/bin/view/Main/SecurityNotice#receive_missing_return_on_error",
"url": "http://support.ntp.org/bin/view/Main/SecurityNotice#receive_missing_return_on_error"
},
{
"category": "external",
"summary": "https://access.redhat.com/articles/1305723",
"url": "https://access.redhat.com/articles/1305723"
}
],
"release_date": "2014-12-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2015-01-28T18:52:05+00:00",
"details": "Before applying this update, make sure all previously released errata \nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to use the \nRed Hat Network to apply this update are available at \nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2015:0104"
},
{
"category": "workaround",
"details": "Remove or comment out all configuration directives beginning with the crypto keyword in your ntp.conf file.",
"product_ids": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
]
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6ComputeNode-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6ComputeNode-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.src",
"6Server-optional-6.5.EUS:ntp-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-debuginfo-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntp-doc-0:4.2.6p5-2.el6_5.noarch",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntp-perl-0:4.2.6p5-2.el6_5.x86_64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.i686",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.ppc64",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.s390x",
"6Server-optional-6.5.EUS:ntpdate-0:4.2.6p5-2.el6_5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "ntp: receive() missing return on error"
}
]
}
VAR-201412-0612
Vulnerability from variot - Updated: 2026-03-09 21:45The receive function in ntp_proto.c in ntpd in NTP before 4.2.8 continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets. The NTP Project ntpd version 4.2.7 and pervious versions contain several vulnerabilities. ntp-keygen prior to version 4.2.7p230 also uses a non-cryptographic random number generator when generating symmetric keys. These vulnerabilities may affect ntpd acting as a server or client. Supplementary information : CWE Vulnerability type by CWE-17: Code ( code ) Has been identified. http://cwe.mitre.org/data/definitions/17.htmlA third party can trigger unintentional association changes through crafted packets. Network Time Protocol is prone to an unspecified security vulnerability. Little is known about this issue or its effects at this time. We will update this BID as more information emerges. Network Time Protocol 4.2.7 is vulnerable; other versions may also be affected. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c04554677
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c04554677 Version: 1
HPSBUX03240 SSRT101872 rev.1 - HP-UX Running NTP, Remote Execution of Code, Denial of Service (DoS), or Other Vulnerabilties
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2015-02-18 Last Updated: 2015-02-18
Potential Security Impact: Remote execution of code, Denial of Service (DoS), or other vulnerabilities
Source: Hewlett-Packard Company, HP Software Security Response Team
VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with HP-UX running NTP. These could be exploited remotely to execute code, create a Denial of Service (DoS), or other vulnerabilities.
References:
CVE-2014-9293 - Insufficient Entropy in Pseudo-Random Number Generator (PRNG) (CWE-332) CVE-2014-9294 - Use of Cryptographically Weak PRNG (CWE-338) CVE-2014-9295 - Stack Buffer Overflow (CWE-121) CVE-2014-9296 - Error Conditions, Return Values, Status Codes (CWE-389) CVE-2014-9297 - Improper Check for Unusual or Exceptional Conditions (CWE-754) SSRT101872 VU#852879
SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed.
HP-UX B.11.31 running NTP version C.4.2.6.4.0 or previous HP-UX B.11.23 running XNTP version 3.5 or previous
BACKGROUND
CVSS 2.0 Base Metrics
Reference Base Vector Base Score CVE-2014-9293 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2014-9294 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2014-9295 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2014-9296 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2014-9297 (AV:N/AC:H/Au:N/C:P/I:N/A:N) 2.6 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002
RESOLUTION
HP has provided the following patch for HP-UX B.11.31. A workaround for HP-UX B.11.23 and B.11.11 to temporarily resolve these vulnerabilities follows below.
The B.11.31 patch is available from: ftp://ntp42650:Secure12@h2.usa.hp.com or https://h20392.www2.hp.com/portal/sw depot/displayProductInfo.do?productNumber=HPUX-NTP
Mitigation steps for HP-UX B.11.23 and B.11.11 for CVE-2014-9295
Restrict query for server status (Time Service is not affected) from ntpq/ntpdc by enabling .noquery. using the restrict command in /etc/ntp.conf file.
Reference: http://support.ntp.org/bin/view/Main/SecurityNotice
NOTE: This bulletin will be revised when patches for XNTP v3.5 on B.11.23 and B.11.11 become available.
MANUAL ACTIONS: No
PRODUCT SPECIFIC INFORMATION
HP-UX Software Assistant: HP-UX Software Assistant is an enhanced application that replaces HP-UX Security Patch Check. It analyzes all Security Bulletins issued by HP and lists recommended actions that may apply to a specific HP-UX system. It can also download patches and create a depot automatically. For more information see: https://www.hp.com/go/swa
The following text is for use by the HP-UX Software Assistant.
AFFECTED VERSIONS
HP-UX B.11.31
NTP.INETSVCS2-BOOT NTP.NTP-AUX NTP.NTP-RUN action: install revision C.4.2.6.5.0 or subsequent
END AFFECTED VERSIONS
HISTORY Version:1 (rev.1) - 18 February 2015 Initial release
Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.
Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com.
Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com
Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins
Security Bulletin Archive: A list of recently released Security Bulletins is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/
Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB.
3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX
Copyright 2015 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits; damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners.
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.13 (GNU/Linux)
iEYEARECAAYFAlTmZ2cACgkQ4B86/C0qfVktpQCfUVutONWPreqP2D8WOpxsidgQ fhwAnj1XmZ/Xr72p+vBwHJpNnQ48KROt =kU5i -----END PGP SIGNATURE----- .
The two patches are available from the HP Support Center (HPSC).
Reference: http://support.ntp.org/bin/view/Main/SecurityNotice
MANUAL ACTIONS: Yes - Update
If patch installation on B.11.11 or B.11.23 is not possible, mitigate with step above.
On December 19, 2014, NTP.org and US-CERT released security advisories detailing two issues regarding weak cryptographic pseudorandom number generation (PRNG), three buffer overflow vulnerabilities, and an unhandled error condition with an unknown impact.
Cisco will release free software updates that address these vulnerabilities. The resulting buffer overflows may be exploited to allow arbitrary malicious code to be executed with the privilege of the ntpd process (CVE-2014-9295).
A section of code in ntpd handling a rare error is missing a return statement, therefore processing did not stop when the error was encountered. This situation may be exploitable by an attacker (CVE-2014-9296).
Stephen Roettger of the Google Security Team, Sebastian Krahmer of the SUSE Security Team and Harlan Stenn of Network Time Foundation discovered that the length value in extension fields is not properly validated in several code paths in ntp_crypto.c, which could lead to information leakage or denial of service (CVE-2014-9297).
Stephen Roettger of the Google Security Team reported that ACLs based on IPv6 ::1 (localhost) addresses can be bypassed (CVE-2014-9298).
The ntp package has been patched to fix these issues.
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9293 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9294 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9295 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9296 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9297 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9298 http://advisories.mageia.org/MGASA-2014-0541.html http://advisories.mageia.org/MGASA-2015-0063.html
Updated Packages:
Mandriva Business Server 2/X86_64: 8f7d14b95c55bd1de7230cff0c8ea9d7 mbs2/x86_64/ntp-4.2.6p5-16.1.mbs2.x86_64.rpm 09063ab11459b1f935809b37c742ff12 mbs2/x86_64/ntp-client-4.2.6p5-16.1.mbs2.x86_64.rpm 7a0d0eca35911d9f15b76b474c5512cf mbs2/x86_64/ntp-doc-4.2.6p5-16.1.mbs2.noarch.rpm cb0371050702950084ff633ea45c2c5c mbs2/SRPMS/ntp-4.2.6p5-16.1.mbs2.src.rpm
To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.
All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing:
gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98
You can view other update advisories for Mandriva Linux at:
http://www.mandriva.com/en/support/security/advisories/
If you want to report vulnerabilities, please contact
security_(at)_mandriva.com
Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux)
iD8DBQFVF9K3mqjQ0CJFipgRAn26AJwInkxLvDh/Gbb3uYRz9IjuaSK8+ACgiM1Z rou2syvF1hyhVhxh7M5sv3c= =uncU -----END PGP SIGNATURE----- .
CVE-2014-9293
ntpd generated a weak key for its internal use, with full
administrative privileges. Attackers could use this key to
reconfigure ntpd (or to exploit other vulnerabilities).
The default ntpd configuration in Debian restricts access to localhost (and possible the adjacent network in case of IPv6).
Keys explicitly generated by "ntp-keygen -M" should be regenerated.
For the stable distribution (wheezy), these problems have been fixed in version 1:4.2.6.p5+dfsg-2+deb7u1.
Here are the details from the Slackware 14.1 ChangeLog: +--------------------------+ patches/packages/ntp-4.2.8-i486-1_slack14.1.txz: Upgraded. In addition to bug fixes and enhancements, this release fixes several high-severity vulnerabilities discovered by Neel Mehta and Stephen Roettger of the Google Security Team. For more information, see: https://www.kb.cert.org/vuls/id/852879 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9293 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9294 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9295 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9296 ( Security fix ) +--------------------------+
Where to find the new packages: +-----------------------------+
Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://slackware.com for additional mirror sites near you.
Updated package for Slackware 13.0: ftp://ftp.slackware.com/pub/slackware/slackware-13.0/patches/packages/ntp-4.2.8-i486-1_slack13.0.txz
Updated package for Slackware x86_64 13.0: ftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/packages/ntp-4.2.8-x86_64-1_slack13.0.txz
Updated package for Slackware 13.1: ftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/ntp-4.2.8-i486-1_slack13.1.txz
Updated package for Slackware x86_64 13.1: ftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/ntp-4.2.8-x86_64-1_slack13.1.txz
Updated package for Slackware 13.37: ftp://ftp.slackware.com/pub/slackware/slackware-13.37/patches/packages/ntp-4.2.8-i486-1_slack13.37.txz
Updated package for Slackware x86_64 13.37: ftp://ftp.slackware.com/pub/slackware/slackware64-13.37/patches/packages/ntp-4.2.8-x86_64-1_slack13.37.txz
Updated package for Slackware 14.0: ftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/ntp-4.2.8-i486-1_slack14.0.txz
Updated package for Slackware x86_64 14.0: ftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/ntp-4.2.8-x86_64-1_slack14.0.txz
Updated package for Slackware 14.1: ftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/ntp-4.2.8-i486-1_slack14.1.txz
Updated package for Slackware x86_64 14.1: ftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/ntp-4.2.8-x86_64-1_slack14.1.txz
Updated package for Slackware -current: ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/ntp-4.2.8-i486-1.txz
Updated package for Slackware x86_64 -current: ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/ntp-4.2.8-x86_64-1.txz
MD5 signatures: +-------------+
Slackware 13.0 package: 18d7f09e90cf2434f59d7e9f11478fba ntp-4.2.8-i486-1_slack13.0.txz
Slackware x86_64 13.0 package: edd178e3d2636433dd18f52331af17a5 ntp-4.2.8-x86_64-1_slack13.0.txz
Slackware 13.1 package: 4b6da6fa564b1fe00920d402ff97bd43 ntp-4.2.8-i486-1_slack13.1.txz
Slackware x86_64 13.1 package: 292ae7dbd3ea593c5e28cbba7c2b71fa ntp-4.2.8-x86_64-1_slack13.1.txz
Slackware 13.37 package: 294b8197d360f9a3cf8186619b60b73c ntp-4.2.8-i486-1_slack13.37.txz
Slackware x86_64 13.37 package: 7cd5b63f8371b1cc369bc56e4b4efd5a ntp-4.2.8-x86_64-1_slack13.37.txz
Slackware 14.0 package: 32eab67538c33e4669bda9200799a497 ntp-4.2.8-i486-1_slack14.0.txz
Slackware x86_64 14.0 package: 33ecf4845fa8533a12a98879815bde08 ntp-4.2.8-x86_64-1_slack14.0.txz
Slackware 14.1 package: f2b45a45c846a909ae201176ce359939 ntp-4.2.8-i486-1_slack14.1.txz
Slackware x86_64 14.1 package: 12d7ab6e2541af4d1282621d3773e7f7 ntp-4.2.8-x86_64-1_slack14.1.txz
Slackware -current package: 5b2150cee9840d8bb547098cccde879a n/ntp-4.2.8-i486-1.txz
Slackware x86_64 -current package: 9ce09c5d6a60d3e2117988e4551e4af1 n/ntp-4.2.8-x86_64-1.txz
Installation instructions: +------------------------+
Upgrade the package as root:
upgradepkg ntp-4.2.8-i486-1_slack14.1.txz
Then, restart the NTP daemon:
sh /etc/rc.d/rc.ntpd restart
+-----+
Slackware Linux Security Team http://slackware.com/gpg-key security@slackware.com
+------------------------------------------------------------------------+ | To leave the slackware-security mailing list: | +------------------------------------------------------------------------+ | Send an email to majordomo@slackware.com with this text in the body of | | the email message: | | | | unsubscribe slackware-security | | | | You will get a confirmation message back containing instructions to | | complete the process. Please do not reply to this email address. ============================================================================ Ubuntu Security Notice USN-2449-1 December 22, 2014
ntp vulnerabilities
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 14.10
- Ubuntu 14.04 LTS
- Ubuntu 12.04 LTS
- Ubuntu 10.04 LTS
Summary:
Several security issues were fixed in NTP.
Software Description: - ntp: Network Time Protocol daemon and utility programs
Details:
Neel Mehta discovered that NTP generated weak authentication keys. A remote attacker could possibly use this issue to brute force the authentication key and send requests if permitted by IP restrictions. (CVE-2014-9293)
Stephen Roettger discovered that NTP generated weak MD5 keys. A remote attacker could possibly use this issue to brute force the MD5 key and spoof a client or server. (CVE-2014-9294)
Stephen Roettger discovered that NTP contained buffer overflows in the crypto_recv(), ctl_putdata() and configure() functions. In non-default configurations, a remote attacker could use these issues to cause NTP to crash, resulting in a denial of service, or possibly execute arbitrary code. The default compiler options for affected releases should reduce the vulnerability to a denial of service. In addition, attackers would be isolated by the NTP AppArmor profile. (CVE-2014-9295)
Stephen Roettger discovered that NTP incorrectly continued processing when handling certain errors. (CVE-2014-9296)
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 14.10: ntp 1:4.2.6.p5+dfsg-3ubuntu2.14.10.1
Ubuntu 14.04 LTS: ntp 1:4.2.6.p5+dfsg-3ubuntu2.14.04.1
Ubuntu 12.04 LTS: ntp 1:4.2.6.p3+dfsg-1ubuntu3.2
Ubuntu 10.04 LTS: ntp 1:4.2.4p8+dfsg-1ubuntu2.2
After a standard system update you need to regenerate any MD5 keys that were manually created with ntp-keygen.
References: http://www.ubuntu.com/usn/usn-2449-1 CVE-2014-9293, CVE-2014-9294, CVE-2014-9295, CVE-2014-9296
Package Information: https://launchpad.net/ubuntu/+source/ntp/1:4.2.6.p5+dfsg-3ubuntu2.14.10.1 https://launchpad.net/ubuntu/+source/ntp/1:4.2.6.p5+dfsg-3ubuntu2.14.04.1 https://launchpad.net/ubuntu/+source/ntp/1:4.2.6.p3+dfsg-1ubuntu3.2 https://launchpad.net/ubuntu/+source/ntp/1:4.2.4p8+dfsg-1ubuntu2.2 . Under Step2: your ITRC operating systems - verify your operating system selections are checked and save.
To update an existing subscription: http://h30046.www3.hp.com/subSignIn.php Log in on the web page: Subscriber's choice for Business: sign-in. On the web page: Subscriber's Choice: your profile summary - use Edit Profile to update appropriate sections. HP is
continually reviewing and enhancing the security features of software products to provide customers with current
secure solutions.
"HP is broadly distributing this Security Bulletin in order to bring to the attention of users of the affected
HP products the important security information contained in this Bulletin. HP recommends that all users
determine the applicability of this information to their individual situations and take appropriate action. HP
does not warrant that this information is necessarily accurate or complete for all user situations and,
consequently, HP will not be responsible for any damages resulting from user's use or disregard of the
information provided in this Bulletin. To the extent permitted by law, HP disclaims all warranties, either
express or implied, including the warranties of merchantability and fitness for a particular purpose, title and
non-infringement."
Copyright 2015 Hewlett-Packard Development Company, L.P
Show details on source website{
"affected_products": {
"_id": null,
"data": [
{
"_id": null,
"model": "communications policy management",
"scope": "eq",
"trust": 1.1,
"vendor": "oracle",
"version": "10.4.1"
},
{
"_id": null,
"model": "communications policy management",
"scope": "eq",
"trust": 1.1,
"vendor": "oracle",
"version": "9.9.1"
},
{
"_id": null,
"model": "communications policy management",
"scope": "eq",
"trust": 1.1,
"vendor": "oracle",
"version": "9.7.3"
},
{
"_id": null,
"model": "ntp",
"scope": "lte",
"trust": 1.0,
"vendor": "ntp",
"version": "4.2.7"
},
{
"_id": null,
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "apple",
"version": null
},
{
"_id": null,
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "cisco",
"version": null
},
{
"_id": null,
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "efficientip",
"version": null
},
{
"_id": null,
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "f5",
"version": null
},
{
"_id": null,
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "freebsd",
"version": null
},
{
"_id": null,
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "nec",
"version": null
},
{
"_id": null,
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "ntp",
"version": null
},
{
"_id": null,
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "omniti",
"version": null
},
{
"_id": null,
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "red hat",
"version": null
},
{
"_id": null,
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "watchguard",
"version": null
},
{
"_id": null,
"model": "ntp",
"scope": "lt",
"trust": 0.8,
"vendor": "ntp",
"version": "4.2.8"
},
{
"_id": null,
"model": "communications policy management",
"scope": "lte",
"trust": 0.8,
"vendor": "oracle",
"version": "12.1.1"
},
{
"_id": null,
"model": "hp virtualization performance viewer",
"scope": "eq",
"trust": 0.8,
"vendor": "hewlett packard",
"version": "1.x"
},
{
"_id": null,
"model": "hp virtualization performance viewer",
"scope": "eq",
"trust": 0.8,
"vendor": "hewlett packard",
"version": "2.0"
},
{
"_id": null,
"model": "hp virtualization performance viewer",
"scope": "eq",
"trust": 0.8,
"vendor": "hewlett packard",
"version": "2.01"
},
{
"_id": null,
"model": "hp virtualization performance viewer",
"scope": "eq",
"trust": 0.8,
"vendor": "hewlett packard",
"version": "2.10"
},
{
"_id": null,
"model": "express5800",
"scope": "eq",
"trust": 0.8,
"vendor": "nec",
"version": "/sigmablade em card (n8405-043) firmware rev.14.02 before"
},
{
"_id": null,
"model": "istorage",
"scope": "eq",
"trust": 0.8,
"vendor": "nec",
"version": "ne single model / cluster model ver.002.08.08 previous version"
},
{
"_id": null,
"model": "istorage",
"scope": "eq",
"trust": 0.8,
"vendor": "nec",
"version": "nv7400/nv5400/nv3400 series"
},
{
"_id": null,
"model": "istorage",
"scope": "eq",
"trust": 0.8,
"vendor": "nec",
"version": "nv7500/nv5500/nv3500 series"
},
{
"_id": null,
"model": "securebranch",
"scope": "eq",
"trust": 0.8,
"vendor": "nec",
"version": "version 3.2"
},
{
"_id": null,
"model": "univerge",
"scope": "eq",
"trust": 0.8,
"vendor": "nec",
"version": "3c cmm"
},
{
"_id": null,
"model": "ha8000 series",
"scope": null,
"trust": 0.8,
"vendor": "hitachi",
"version": null
},
{
"_id": null,
"model": "paging server",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "edge digital media player",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "3000"
},
{
"_id": null,
"model": "download server",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "linux",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "14.10"
},
{
"_id": null,
"model": "linux lts",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "14.04"
},
{
"_id": null,
"model": "linux lts i386",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "12.04"
},
{
"_id": null,
"model": "linux lts amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "12.04"
},
{
"_id": null,
"model": "linux sparc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"_id": null,
"model": "linux powerpc",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"_id": null,
"model": "linux i386",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"_id": null,
"model": "linux arm",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"_id": null,
"model": "linux amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "10.04"
},
{
"_id": null,
"model": "opensuse evergreen",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "11.4"
},
{
"_id": null,
"model": "linux enterprise server",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "12"
},
{
"_id": null,
"model": "linux enterprise desktop",
"scope": "eq",
"trust": 0.3,
"vendor": "suse",
"version": "12"
},
{
"_id": null,
"model": "linux",
"scope": "eq",
"trust": 0.3,
"vendor": "slackware",
"version": "14.1"
},
{
"_id": null,
"model": "linux",
"scope": "eq",
"trust": 0.3,
"vendor": "slackware",
"version": "14.0"
},
{
"_id": null,
"model": "linux",
"scope": "eq",
"trust": 0.3,
"vendor": "slackware",
"version": "13.37"
},
{
"_id": null,
"model": "linux",
"scope": "eq",
"trust": 0.3,
"vendor": "slackware",
"version": "13.1"
},
{
"_id": null,
"model": "linux",
"scope": "eq",
"trust": 0.3,
"vendor": "slackware",
"version": "13.0"
},
{
"_id": null,
"model": "opensuse",
"scope": "eq",
"trust": 0.3,
"vendor": "s u s e",
"version": "13.2"
},
{
"_id": null,
"model": "opensuse",
"scope": "eq",
"trust": 0.3,
"vendor": "s u s e",
"version": "13.1"
},
{
"_id": null,
"model": "opensuse",
"scope": "eq",
"trust": 0.3,
"vendor": "s u s e",
"version": "12.3"
},
{
"_id": null,
"model": "enterprise linux workstation optional",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "7"
},
{
"_id": null,
"model": "enterprise linux workstation optional",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "6"
},
{
"_id": null,
"model": "enterprise linux workstation",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "7"
},
{
"_id": null,
"model": "enterprise linux workstation",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "6"
},
{
"_id": null,
"model": "enterprise linux server optional",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "7"
},
{
"_id": null,
"model": "enterprise linux server optional",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "6"
},
{
"_id": null,
"model": "enterprise linux server",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "7"
},
{
"_id": null,
"model": "enterprise linux server",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "6"
},
{
"_id": null,
"model": "enterprise linux hpc node optional",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "6"
},
{
"_id": null,
"model": "enterprise linux hpc node",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "6"
},
{
"_id": null,
"model": "enterprise linux desktop optional",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "6"
},
{
"_id": null,
"model": "enterprise linux desktop",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "6"
},
{
"_id": null,
"model": "enterprise linux computenode optional",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "7"
},
{
"_id": null,
"model": "enterprise linux computenode",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "7"
},
{
"_id": null,
"model": "enterprise linux client optional",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "7"
},
{
"_id": null,
"model": "enterprise linux client",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "7"
},
{
"_id": null,
"model": "solaris",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "11.2"
},
{
"_id": null,
"model": "solaris",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "11.1"
},
{
"_id": null,
"model": "solaris",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "10"
},
{
"_id": null,
"model": "enterprise linux",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "7"
},
{
"_id": null,
"model": "communications policy management",
"scope": "eq",
"trust": 0.3,
"vendor": "oracle",
"version": "12.1.1"
},
{
"_id": null,
"model": "network time protocol 4.2.7p10",
"scope": null,
"trust": 0.3,
"vendor": "meinberg",
"version": null
},
{
"_id": null,
"model": "network time protocol",
"scope": "eq",
"trust": 0.3,
"vendor": "meinberg",
"version": "4.2.7"
},
{
"_id": null,
"model": "network time protocol",
"scope": "eq",
"trust": 0.3,
"vendor": "meinberg",
"version": "4.2.6"
},
{
"_id": null,
"model": "network time protocol",
"scope": "eq",
"trust": 0.3,
"vendor": "meinberg",
"version": "4.2.5"
},
{
"_id": null,
"model": "network time protocol 4.2.4p8@lennon-o-lpv",
"scope": null,
"trust": 0.3,
"vendor": "meinberg",
"version": null
},
{
"_id": null,
"model": "network time protocol 4.2.4p7@copenhagen-o",
"scope": null,
"trust": 0.3,
"vendor": "meinberg",
"version": null
},
{
"_id": null,
"model": "network time protocol",
"scope": "eq",
"trust": 0.3,
"vendor": "meinberg",
"version": "4.2.4"
},
{
"_id": null,
"model": "network time protocol",
"scope": "eq",
"trust": 0.3,
"vendor": "meinberg",
"version": "4.2.2"
},
{
"_id": null,
"model": "network time protocol",
"scope": "eq",
"trust": 0.3,
"vendor": "meinberg",
"version": "4.2.0"
},
{
"_id": null,
"model": "network time protocol",
"scope": "eq",
"trust": 0.3,
"vendor": "meinberg",
"version": "4.1.0"
},
{
"_id": null,
"model": "network time protocol",
"scope": "eq",
"trust": 0.3,
"vendor": "meinberg",
"version": "4.0"
},
{
"_id": null,
"model": "business server",
"scope": "eq",
"trust": 0.3,
"vendor": "mandriva",
"version": "1x8664"
},
{
"_id": null,
"model": "business server",
"scope": "eq",
"trust": 0.3,
"vendor": "mandriva",
"version": "1"
},
{
"_id": null,
"model": "vgw",
"scope": "eq",
"trust": 0.3,
"vendor": "juniper",
"version": "0"
},
{
"_id": null,
"model": "nsmexpress",
"scope": "eq",
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "nsm server software",
"scope": "eq",
"trust": 0.3,
"vendor": "juniper",
"version": "0"
},
{
"_id": null,
"model": "nsm series appliances",
"scope": "eq",
"trust": 0.3,
"vendor": "juniper",
"version": "0"
},
{
"_id": null,
"model": "nsm",
"scope": "eq",
"trust": 0.3,
"vendor": "juniper",
"version": "0"
},
{
"_id": null,
"model": "junos space",
"scope": "eq",
"trust": 0.3,
"vendor": "juniper",
"version": "0"
},
{
"_id": null,
"model": "junos os 14.2r1",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 14.1r2-s2",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 14.1r2",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 14.1r1",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.3r4",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.3r3-s2",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.3r3",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.3r2-s3",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.3r1",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.2x51-d25",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.2r5-s1",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.2r5",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.1x50-d30",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.1r4-s3",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.1r4-s2",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.3r8",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.3r7",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.2x50-d70",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.2r9",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.1x47-d15",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.1x47-d10",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.1x46-d25",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.1x46-d20",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.1x44-d40",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 11.4r12-s4",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 11.4r12-s1",
"scope": null,
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os",
"scope": "eq",
"trust": 0.3,
"vendor": "juniper",
"version": "0"
},
{
"_id": null,
"model": "xeon phi 7120p",
"scope": null,
"trust": 0.3,
"vendor": "intel",
"version": null
},
{
"_id": null,
"model": "xeon phi 7120a",
"scope": null,
"trust": 0.3,
"vendor": "intel",
"version": null
},
{
"_id": null,
"model": "xeon phi 5110p",
"scope": null,
"trust": 0.3,
"vendor": "intel",
"version": null
},
{
"_id": null,
"model": "xeon phi 3120a",
"scope": null,
"trust": 0.3,
"vendor": "intel",
"version": null
},
{
"_id": null,
"model": "manycore platform software stack",
"scope": "eq",
"trust": 0.3,
"vendor": "intel",
"version": "3.4"
},
{
"_id": null,
"model": "manycore platform software stack",
"scope": "eq",
"trust": 0.3,
"vendor": "intel",
"version": "3.3"
},
{
"_id": null,
"model": "manycore platform software stack",
"scope": "eq",
"trust": 0.3,
"vendor": "intel",
"version": "3.2"
},
{
"_id": null,
"model": "manycore platform software stack",
"scope": "eq",
"trust": 0.3,
"vendor": "intel",
"version": "3.1"
},
{
"_id": null,
"model": "manycore platform software stack",
"scope": "eq",
"trust": 0.3,
"vendor": "intel",
"version": "2.1"
},
{
"_id": null,
"model": "smartcloud entry fp",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "3.19"
},
{
"_id": null,
"model": "smartcloud entry",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "3.1"
},
{
"_id": null,
"model": "smart analytics system",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "77100"
},
{
"_id": null,
"model": "smart analytics system",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "77000"
},
{
"_id": null,
"model": "smart analytics system",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "76000"
},
{
"_id": null,
"model": "security network protection",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "71005.3"
},
{
"_id": null,
"model": "security network protection",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "71005.2"
},
{
"_id": null,
"model": "security network protection",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "51005.3"
},
{
"_id": null,
"model": "security network protection",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "51005.2"
},
{
"_id": null,
"model": "security network protection",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "41005.3"
},
{
"_id": null,
"model": "security network protection",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "41005.2"
},
{
"_id": null,
"model": "security network protection",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "31005.3"
},
{
"_id": null,
"model": "security network protection",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "31005.2"
},
{
"_id": null,
"model": "pureflex",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x3950x6"
},
{
"_id": null,
"model": "pureflex",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "x3850x6"
},
{
"_id": null,
"model": "pureflex x240m5+pen",
"scope": null,
"trust": 0.3,
"vendor": "ibm",
"version": null
},
{
"_id": null,
"model": "pureflex x240m4",
"scope": null,
"trust": 0.3,
"vendor": "ibm",
"version": null
},
{
"_id": null,
"model": "pureflex x220m4",
"scope": null,
"trust": 0.3,
"vendor": "ibm",
"version": null
},
{
"_id": null,
"model": "puredata system for operational analytics",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.1"
},
{
"_id": null,
"model": "puredata system for operational analytics",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "1.0"
},
{
"_id": null,
"model": "power hmc",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.8.2.0"
},
{
"_id": null,
"model": "power hmc",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "8.8.1.0"
},
{
"_id": null,
"model": "power hmc",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.7.9.0"
},
{
"_id": null,
"model": "power hmc",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.7.8.0"
},
{
"_id": null,
"model": "power hmc",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.7.7.0"
},
{
"_id": null,
"model": "power hmc",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "7.7.3.0"
},
{
"_id": null,
"model": "nextscale nx360m5",
"scope": null,
"trust": 0.3,
"vendor": "ibm",
"version": null
},
{
"_id": null,
"model": "nextscale nx360m4",
"scope": null,
"trust": 0.3,
"vendor": "ibm",
"version": null
},
{
"_id": null,
"model": "netezza host management",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.3.3"
},
{
"_id": null,
"model": "netezza host management",
"scope": "eq",
"trust": 0.3,
"vendor": "ibm",
"version": "5.3.2.0"
},
{
"_id": null,
"model": "idataplex dx360m4",
"scope": null,
"trust": 0.3,
"vendor": "ibm",
"version": null
},
{
"_id": null,
"model": "rack v100r001c00",
"scope": "eq",
"trust": 0.3,
"vendor": "huawei",
"version": "x8000"
},
{
"_id": null,
"model": "v1300n v100r002c02",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "tecal xh621 v100r001c00b010",
"scope": "eq",
"trust": 0.3,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "tecal xh320 v100r001c00spc105",
"scope": "eq",
"trust": 0.3,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "tecal xh311 v100r001c00spc100",
"scope": "eq",
"trust": 0.3,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "tecal xh310 v100r001c00spc100",
"scope": "eq",
"trust": 0.3,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "rh5885h v100r003c00",
"scope": "eq",
"trust": 0.3,
"vendor": "huawei",
"version": "v3"
},
{
"_id": null,
"model": "rh5885 v100r003c01",
"scope": "eq",
"trust": 0.3,
"vendor": "huawei",
"version": "v3"
},
{
"_id": null,
"model": "rh5885 v100r001c00",
"scope": "eq",
"trust": 0.3,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "rh2485 v100r002c00",
"scope": "eq",
"trust": 0.3,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "rh2288h v100r002c00",
"scope": "eq",
"trust": 0.3,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "rh2288e v100r002c00",
"scope": "eq",
"trust": 0.3,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "rh2288 v100r002c00",
"scope": "eq",
"trust": 0.3,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "rh2285h v100r002c00",
"scope": "eq",
"trust": 0.3,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "rh2285 v100r002c00",
"scope": "eq",
"trust": 0.3,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "rh1288 v100r002c00",
"scope": "eq",
"trust": 0.3,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "oceanstor uds v100r002c01",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "oceanstor uds v100r002c00",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "oceanstor s6800t v200r002c00",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "oceanstor s5800t v200r002c00",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "oceanstor s5600t v100r002c00",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "oceanstor s5500t v200r002c00",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "oceanstor s2600t v200r002c00",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "oceanstor hvs88t v100r001c00",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "oceanstor hvs85t v100r001c00",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "oceanstor 18800f v100r001c00",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "oceanstor v100r001c00",
"scope": "eq",
"trust": 0.3,
"vendor": "huawei",
"version": "18800"
},
{
"_id": null,
"model": "high-density server dh628 v100r001c00",
"scope": "eq",
"trust": 0.3,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "high-density server dh621 v100r001c00",
"scope": "eq",
"trust": 0.3,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "high-density server dh620 v100r001c00",
"scope": "eq",
"trust": 0.3,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "high-density server dh320 v100r001c00",
"scope": "eq",
"trust": 0.3,
"vendor": "huawei",
"version": "v2"
},
{
"_id": null,
"model": "fusionsphere openstack v100r005c00",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "fusioncube v100r002c02spc300",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "fusioncube v100r002c02spc200",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "fusioncube v100r002c02spc100",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "fusioncube v100r002c01spc100",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "fusioncompute v100r005c10",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "fusioncompute v100r005c00",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "fusioncompute v100r003c10",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "fusioncompute v100r003c00",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "fusionaccess v100r005c20",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "fusionaccess v100r005c10",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace vtm v100r002c00",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace vtm v100r001c30",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace vtm v100r001c02",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace vcn3000 v100r002c00",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace usm v200r003c00",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace uc v200r003c00",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace uc v200r002c01",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace uc v100r002c00",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace u2980 v200r003c00",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace u2980 v100r001c02spc200",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace u2980 v100r001c01",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace ivs v100r001c02",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace dcm v100r002c01",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace dcm v100r001c03",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace dcm v100r001c02",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace dcm v100r001c01",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace cc v200r001c50",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace cc v200r001c32",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace cc v200r001c31",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace cc v200r001c03",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "espace cad v100r001c01lhue01",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "esight uc\u0026c v100r001c20",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "esight uc\u0026c v100r001c01",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "esight network v200r005c00",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "esight network v200r003c10",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "esight network v200r003c01",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "e9000 chassis v100r001c00",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "e6000 chassis v100r001c00",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "dc v100r002c01spc001",
"scope": null,
"trust": 0.3,
"vendor": "huawei",
"version": null
},
{
"_id": null,
"model": "virtualization performance viewer",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "2.10"
},
{
"_id": null,
"model": "virtualization performance viewer",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "2.01"
},
{
"_id": null,
"model": "virtualization performance viewer",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "2.0"
},
{
"_id": null,
"model": "virtualization performance viewer",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "1.2"
},
{
"_id": null,
"model": "virtualization performance viewer",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "1.1"
},
{
"_id": null,
"model": "virtualization performance viewer",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "1.0"
},
{
"_id": null,
"model": "tcp/ip services for openvms",
"scope": "eq",
"trust": 0.3,
"vendor": "hp",
"version": "5.7"
},
{
"_id": null,
"model": "hp-ux b.11.31",
"scope": null,
"trust": 0.3,
"vendor": "hp",
"version": null
},
{
"_id": null,
"model": "hp-ux b.11.23",
"scope": null,
"trust": 0.3,
"vendor": "hp",
"version": null
},
{
"_id": null,
"model": "advanced server ha8000cr",
"scope": "eq",
"trust": 0.3,
"vendor": "hitachi",
"version": "0"
},
{
"_id": null,
"model": "linux",
"scope": null,
"trust": 0.3,
"vendor": "gentoo",
"version": null
},
{
"_id": null,
"model": "freebsd",
"scope": "eq",
"trust": 0.3,
"vendor": "freebsd",
"version": "0"
},
{
"_id": null,
"model": "vipr srm",
"scope": "eq",
"trust": 0.3,
"vendor": "emc",
"version": "3.6.0"
},
{
"_id": null,
"model": "m\u0026r",
"scope": "eq",
"trust": 0.3,
"vendor": "emc",
"version": "6.5"
},
{
"_id": null,
"model": "linux sparc",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "linux s/390",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "linux powerpc",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "linux mips",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "linux ia-64",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "linux ia-32",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "linux arm",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "linux amd64",
"scope": "eq",
"trust": 0.3,
"vendor": "debian",
"version": "6.0"
},
{
"_id": null,
"model": "netscaler gateway",
"scope": "eq",
"trust": 0.3,
"vendor": "citrix",
"version": "0"
},
{
"_id": null,
"model": "netscaler application delivery controller",
"scope": "eq",
"trust": 0.3,
"vendor": "citrix",
"version": "0"
},
{
"_id": null,
"model": "wide area application services",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "webex social",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "webex meetings server base",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "2.5"
},
{
"_id": null,
"model": "webex meetings server",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "2.5"
},
{
"_id": null,
"model": "webex meetings server 2.0mr2",
"scope": null,
"trust": 0.3,
"vendor": "cisco",
"version": null
},
{
"_id": null,
"model": "webex meetings server",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "2.0"
},
{
"_id": null,
"model": "virtualization experience client",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "62150"
},
{
"_id": null,
"model": "virtual systems operations center for vpe project",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "virtual security gateway",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "videoscape conductor",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "videoscape back office",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "video surveillance media server",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "video delivery system recorder",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "universal small cell ran management system wireless",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "unity connection",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "unified sip proxy",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "unified provisioning manager",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "8.6"
},
{
"_id": null,
"model": "unified meetingplace",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "unified intelligence center",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "unified contact center express",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "unified communications manager",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "unified communications domain manager",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "ucs manager",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "ucs invicta series",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "ucs director",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "transaction encryption device",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "telepresence tx series",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "90000"
},
{
"_id": null,
"model": "telepresence te software",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "-0"
},
{
"_id": null,
"model": "telepresence system",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "500-370"
},
{
"_id": null,
"model": "telepresence system",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "500-320"
},
{
"_id": null,
"model": "telepresence system series",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "30000"
},
{
"_id": null,
"model": "telepresence system",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "13000"
},
{
"_id": null,
"model": "telepresence system",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "11000"
},
{
"_id": null,
"model": "telepresence system",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "10000"
},
{
"_id": null,
"model": "telepresence profile series",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "telepresence isdn link",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "telepresence",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "13100"
},
{
"_id": null,
"model": "service control engines system software",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "scos",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "remote network control system",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "remote conditional access system",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "quantum son suite",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "quantum policy suite",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "prime service catalog virtual appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "prime license manager",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "prime lan management solution",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "prime infrastructure",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": null
},
{
"_id": null,
"model": "prime data center network manager",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "prime collaboration provisioning",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "powervu network center",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "powervu d9190 conditional access manager",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "powerkey encryption server",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "physical access manager",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "onepk all-in-one vm",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "nexus series switches",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "90000"
},
{
"_id": null,
"model": "nexus series switches",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "70000"
},
{
"_id": null,
"model": "nexus series switches",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "60000"
},
{
"_id": null,
"model": "nexus series switches",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "50000"
},
{
"_id": null,
"model": "nexus series switches",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "40000"
},
{
"_id": null,
"model": "nexus series switches",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "30000"
},
{
"_id": null,
"model": "nexus series switches",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "1000v0"
},
{
"_id": null,
"model": "network configuration and change management service",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "network configuration and change management",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "netflow collection agent",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "mediasense",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "media experience engines",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "mds series multilayer switches",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "90000"
},
{
"_id": null,
"model": "management heartbeat server",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "jabber guest",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "iptv service delivery system",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "ip interoperability and collaboration system",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "ios xr software",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "ios xr for cisco network convergence system",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "60000"
},
{
"_id": null,
"model": "international digital network control system",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "intelligent automation for cloud",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "im and presence service",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "firesight system software",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "finesse",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "explorer controller",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "enterprise content delivery service",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "encryption appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "emergency responder",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "emergency responder",
"scope": null,
"trust": 0.3,
"vendor": "cisco",
"version": null
},
{
"_id": null,
"model": "dncs application server",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "digital transport adapter control system",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "digital network control system",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "digital media manager",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "dcm series 9900-digital content manager",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "d9036 modular encoding platform",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "common services platform collector",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "common download server",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "command server",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "20000"
},
{
"_id": null,
"model": "cloud object store",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "telepresence endpoints sx series",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "telepresence endpoints mxg2 series",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "telepresence endpoints mx series",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "telepresence endpoints ex series",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "telepresence endpoints c series",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "telepresence endpoints 10\" touch panel",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "ironport encryption appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "application policy infrastructure controller",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "autobackup server",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "asa cx and cisco prime security manager",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "application networking manager",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "application and content networking system",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"_id": null,
"model": "centos",
"scope": "eq",
"trust": 0.3,
"vendor": "centos",
"version": "7"
},
{
"_id": null,
"model": "one-x client enablement services sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.2"
},
{
"_id": null,
"model": "one-x client enablement services",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.2"
},
{
"_id": null,
"model": "ip office server edition",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "9.0"
},
{
"_id": null,
"model": "ip office server edition",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "8.1"
},
{
"_id": null,
"model": "ip office application server sp",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "9.02"
},
{
"_id": null,
"model": "ip office application server sp",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "9.01"
},
{
"_id": null,
"model": "ip office application server",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "9.0"
},
{
"_id": null,
"model": "cms r17",
"scope": null,
"trust": 0.3,
"vendor": "avaya",
"version": null
},
{
"_id": null,
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.3.1"
},
{
"_id": null,
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.3.3"
},
{
"_id": null,
"model": "aura session manager",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.3"
},
{
"_id": null,
"model": "aura experience portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0.2"
},
{
"_id": null,
"model": "aura experience portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0.1"
},
{
"_id": null,
"model": "aura experience portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "7.0"
},
{
"_id": null,
"model": "aura experience portal sp2",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"_id": null,
"model": "aura experience portal sp1",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"_id": null,
"model": "aura experience portal",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "6.0"
},
{
"_id": null,
"model": "aura conferencing",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "8.0"
},
{
"_id": null,
"model": "aura collaboration environment",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "3.0"
},
{
"_id": null,
"model": "aura collaboration environment",
"scope": "eq",
"trust": 0.3,
"vendor": "avaya",
"version": "2.0"
},
{
"_id": null,
"model": "network time protocol",
"scope": "ne",
"trust": 0.3,
"vendor": "meinberg",
"version": "4.2.8"
},
{
"_id": null,
"model": "junos os 14.2r3",
"scope": "ne",
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 14.1x55-d16",
"scope": "ne",
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 14.1x50-d90",
"scope": "ne",
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 14.1r5",
"scope": "ne",
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.3r6",
"scope": "ne",
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 13.2r8",
"scope": "ne",
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.3x48-d15",
"scope": "ne",
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.3r9",
"scope": "ne",
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.1x47-d20",
"scope": "ne",
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.1x46-d35",
"scope": "ne",
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "junos os 12.1x44-d50",
"scope": "ne",
"trust": 0.3,
"vendor": "juniper",
"version": null
},
{
"_id": null,
"model": "smartcloud entry fp",
"scope": "ne",
"trust": 0.3,
"vendor": "ibm",
"version": "3.110"
},
{
"_id": null,
"model": "vipr srm",
"scope": "ne",
"trust": 0.3,
"vendor": "emc",
"version": "3.6.1"
},
{
"_id": null,
"model": "m\u0026r 6.5u1",
"scope": "ne",
"trust": 0.3,
"vendor": "emc",
"version": null
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#852879"
},
{
"db": "BID",
"id": "71758"
},
{
"db": "JVNDB",
"id": "JVNDB-2014-007353"
},
{
"db": "NVD",
"id": "CVE-2014-9296"
}
]
},
"configurations": {
"_id": null,
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/a:ntp:ntp",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/a:oracle:communications_policy_management",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/a:hp:virtualization_performance_viewer",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/h:nec:express5800",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/h:nec:istorage",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/h:nec:securebranch",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/h:nec:univerge",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2014-007353"
}
]
},
"credits": {
"_id": null,
"data": "Stephen Roettger and Neel Mehta of the Google Security Team.",
"sources": [
{
"db": "BID",
"id": "71758"
}
],
"trust": 0.3
},
"cve": "CVE-2014-9296",
"cvss": {
"_id": null,
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"id": "CVE-2014-9296",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 1.9,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2014-9296",
"trust": 1.0,
"value": "MEDIUM"
},
{
"author": "NVD",
"id": "CVE-2014-9296",
"trust": 0.8,
"value": "Medium"
},
{
"author": "VULMON",
"id": "CVE-2014-9296",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2014-9296"
},
{
"db": "JVNDB",
"id": "JVNDB-2014-007353"
},
{
"db": "NVD",
"id": "CVE-2014-9296"
}
]
},
"description": {
"_id": null,
"data": "The receive function in ntp_proto.c in ntpd in NTP before 4.2.8 continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets. The NTP Project ntpd version 4.2.7 and pervious versions contain several vulnerabilities. ntp-keygen prior to version 4.2.7p230 also uses a non-cryptographic random number generator when generating symmetric keys. These vulnerabilities may affect ntpd acting as a server or client. Supplementary information : CWE Vulnerability type by CWE-17: Code ( code ) Has been identified. http://cwe.mitre.org/data/definitions/17.htmlA third party can trigger unintentional association changes through crafted packets. Network Time Protocol is prone to an unspecified security vulnerability. \nLittle is known about this issue or its effects at this time. We will update this BID as more information emerges. \nNetwork Time Protocol 4.2.7 is vulnerable; other versions may also be affected. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nNote: the current version of the following document is available here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/\ndocDisplay?docId=emr_na-c04554677\n\nSUPPORT COMMUNICATION - SECURITY BULLETIN\n\nDocument ID: c04554677\nVersion: 1\n\nHPSBUX03240 SSRT101872 rev.1 - HP-UX Running NTP, Remote Execution of Code,\nDenial of Service (DoS), or Other Vulnerabilties\n\nNOTICE: The information in this Security Bulletin should be acted upon as\nsoon as possible. \n\nRelease Date: 2015-02-18\nLast Updated: 2015-02-18\n\nPotential Security Impact: Remote execution of code, Denial of Service (DoS),\nor other vulnerabilities\n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nPotential security vulnerabilities have been identified with HP-UX running\nNTP. These could be exploited remotely to execute code, create a Denial of\nService (DoS), or other vulnerabilities. \n\nReferences:\n\nCVE-2014-9293 - Insufficient Entropy in Pseudo-Random Number Generator (PRNG)\n(CWE-332)\nCVE-2014-9294 - Use of Cryptographically Weak PRNG (CWE-338)\nCVE-2014-9295 - Stack Buffer Overflow (CWE-121)\nCVE-2014-9296 - Error Conditions, Return Values, Status Codes (CWE-389)\nCVE-2014-9297 - Improper Check for Unusual or Exceptional Conditions\n(CWE-754)\nSSRT101872\nVU#852879\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \n\nHP-UX B.11.31 running NTP version C.4.2.6.4.0 or previous\nHP-UX B.11.23 running XNTP version 3.5 or previous\n\nBACKGROUND\n\nCVSS 2.0 Base Metrics\n===========================================================\n Reference Base Vector Base Score\nCVE-2014-9293 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5\nCVE-2014-9294 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5\nCVE-2014-9295 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5\nCVE-2014-9296 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0\nCVE-2014-9297 (AV:N/AC:H/Au:N/C:P/I:N/A:N) 2.6\n===========================================================\n Information on CVSS is documented\n in HP Customer Notice: HPSN-2008-002\n\nRESOLUTION\n\nHP has provided the following patch for HP-UX B.11.31. A workaround for HP-UX\nB.11.23 and B.11.11 to temporarily resolve these vulnerabilities follows\nbelow. \n\nThe B.11.31 patch is available from:\nftp://ntp42650:Secure12@h2.usa.hp.com or https://h20392.www2.hp.com/portal/sw\ndepot/displayProductInfo.do?productNumber=HPUX-NTP\n\nMitigation steps for HP-UX B.11.23 and B.11.11 for CVE-2014-9295\n\nRestrict query for server status (Time Service is not affected) from\nntpq/ntpdc by enabling .noquery. using the restrict command in /etc/ntp.conf\nfile. \n\nReference: http://support.ntp.org/bin/view/Main/SecurityNotice\n\nNOTE: This bulletin will be revised when patches for XNTP v3.5 on B.11.23 and\nB.11.11 become available. \n\nMANUAL ACTIONS: No\n\nPRODUCT SPECIFIC INFORMATION\n\nHP-UX Software Assistant: HP-UX Software Assistant is an enhanced application\nthat replaces HP-UX Security Patch Check. It analyzes all Security Bulletins\nissued by HP and lists recommended actions that may apply to a specific HP-UX\nsystem. It can also download patches and create a depot automatically. For\nmore information see: https://www.hp.com/go/swa\n\nThe following text is for use by the HP-UX Software Assistant. \n\nAFFECTED VERSIONS\n\nHP-UX B.11.31\n==================\nNTP.INETSVCS2-BOOT\nNTP.NTP-AUX\nNTP.NTP-RUN\naction: install revision C.4.2.6.5.0 or subsequent\n\nEND AFFECTED VERSIONS\n\nHISTORY\nVersion:1 (rev.1) - 18 February 2015 Initial release\n\nThird Party Security Patches: Third party security patches that are to be\ninstalled on systems running HP software products should be applied in\naccordance with the customer\u0027s patch management policy. \n\nSupport: For issues about implementing the recommendations of this Security\nBulletin, contact normal HP Services support channel. For other issues about\nthe content of this Security Bulletin, send e-mail to security-alert@hp.com. \n\nReport: To report a potential security vulnerability with any HP supported\nproduct, send Email to: security-alert@hp.com\n\nSubscribe: To initiate a subscription to receive future HP Security Bulletin\nalerts via Email:\nhttp://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins\n\nSecurity Bulletin Archive: A list of recently released Security Bulletins is\navailable here:\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/\n\nSoftware Product Category: The Software Product Category is represented in\nthe title by the two characters following HPSB. \n\n3C = 3COM\n3P = 3rd Party Software\nGN = HP General Software\nHF = HP Hardware and Firmware\nMP = MPE/iX\nMU = Multi-Platform Software\nNS = NonStop Servers\nOV = OpenVMS\nPI = Printing and Imaging\nPV = ProCurve\nST = Storage Software\nTU = Tru64 UNIX\nUX = HP-UX\n\nCopyright 2015 Hewlett-Packard Development Company, L.P. \nHewlett-Packard Company shall not be liable for technical or editorial errors\nor omissions contained herein. The information provided is provided \"as is\"\nwithout warranty of any kind. To the extent permitted by law, neither HP or\nits affiliates, subcontractors or suppliers will be liable for\nincidental,special or consequential damages including downtime cost; lost\nprofits; damages relating to the procurement of substitute products or\nservices; or damages for loss of data, or software restoration. The\ninformation in this document is subject to change without notice. \nHewlett-Packard Company and the names of Hewlett-Packard products referenced\nherein are trademarks of Hewlett-Packard Company in the United States and\nother countries. Other product and company names mentioned herein may be\ntrademarks of their respective owners. \n\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.13 (GNU/Linux)\n\niEYEARECAAYFAlTmZ2cACgkQ4B86/C0qfVktpQCfUVutONWPreqP2D8WOpxsidgQ\nfhwAnj1XmZ/Xr72p+vBwHJpNnQ48KROt\n=kU5i\n-----END PGP SIGNATURE-----\n. \n\nThe two patches are available from the HP Support Center (HPSC). \n\nReference: http://support.ntp.org/bin/view/Main/SecurityNotice\n\nMANUAL ACTIONS: Yes - Update\n\nIf patch installation on B.11.11 or B.11.23 is not possible, mitigate with\nstep above. \n\nOn December 19, 2014, NTP.org and US-CERT released security advisories detailing two issues regarding weak cryptographic pseudorandom number generation (PRNG), three buffer overflow vulnerabilities, and an unhandled error condition with an unknown impact. \n\nCisco will release free software updates that address these vulnerabilities. The\n resulting buffer overflows may be exploited to allow arbitrary\n malicious code to be executed with the privilege of the ntpd process\n (CVE-2014-9295). \n \n A section of code in ntpd handling a rare error is missing a return\n statement, therefore processing did not stop when the error was\n encountered. This situation may be exploitable by an attacker\n (CVE-2014-9296). \n \n Stephen Roettger of the Google Security Team, Sebastian Krahmer of\n the SUSE Security Team and Harlan Stenn of Network Time Foundation\n discovered that the length value in extension fields is not properly\n validated in several code paths in ntp_crypto.c, which could lead to\n information leakage or denial of service (CVE-2014-9297). \n \n Stephen Roettger of the Google Security Team reported that ACLs based\n on IPv6 ::1 (localhost) addresses can be bypassed (CVE-2014-9298). \n \n The ntp package has been patched to fix these issues. \n _______________________________________________________________________\n\n References:\n\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9293\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9294\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9295\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9296\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9297\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9298\n http://advisories.mageia.org/MGASA-2014-0541.html\n http://advisories.mageia.org/MGASA-2015-0063.html\n _______________________________________________________________________\n\n Updated Packages:\n\n Mandriva Business Server 2/X86_64:\n 8f7d14b95c55bd1de7230cff0c8ea9d7 mbs2/x86_64/ntp-4.2.6p5-16.1.mbs2.x86_64.rpm\n 09063ab11459b1f935809b37c742ff12 mbs2/x86_64/ntp-client-4.2.6p5-16.1.mbs2.x86_64.rpm\n 7a0d0eca35911d9f15b76b474c5512cf mbs2/x86_64/ntp-doc-4.2.6p5-16.1.mbs2.noarch.rpm \n cb0371050702950084ff633ea45c2c5c mbs2/SRPMS/ntp-4.2.6p5-16.1.mbs2.src.rpm\n _______________________________________________________________________\n\n To upgrade automatically use MandrivaUpdate or urpmi. The verification\n of md5 checksums and GPG signatures is performed automatically for you. \n\n All packages are signed by Mandriva for security. You can obtain the\n GPG public key of the Mandriva Security Team by executing:\n\n gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98\n\n You can view other update advisories for Mandriva Linux at:\n\n http://www.mandriva.com/en/support/security/advisories/\n\n If you want to report vulnerabilities, please contact\n\n security_(at)_mandriva.com\n _______________________________________________________________________\n\n Type Bits/KeyID Date User ID\n pub 1024D/22458A98 2000-07-10 Mandriva Security Team\n \u003csecurity*mandriva.com\u003e\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.12 (GNU/Linux)\n\niD8DBQFVF9K3mqjQ0CJFipgRAn26AJwInkxLvDh/Gbb3uYRz9IjuaSK8+ACgiM1Z\nrou2syvF1hyhVhxh7M5sv3c=\n=uncU\n-----END PGP SIGNATURE-----\n. \n\nCVE-2014-9293\n\n ntpd generated a weak key for its internal use, with full\n administrative privileges. Attackers could use this key to\n reconfigure ntpd (or to exploit other vulnerabilities). \n\nThe default ntpd configuration in Debian restricts access to localhost\n(and possible the adjacent network in case of IPv6). \n\nKeys explicitly generated by \"ntp-keygen -M\" should be regenerated. \n\nFor the stable distribution (wheezy), these problems have been fixed in\nversion 1:4.2.6.p5+dfsg-2+deb7u1. \n\n\nHere are the details from the Slackware 14.1 ChangeLog:\n+--------------------------+\npatches/packages/ntp-4.2.8-i486-1_slack14.1.txz: Upgraded. \n In addition to bug fixes and enhancements, this release fixes\n several high-severity vulnerabilities discovered by Neel Mehta\n and Stephen Roettger of the Google Security Team. \n For more information, see:\n https://www.kb.cert.org/vuls/id/852879\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9293\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9294\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9295\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9296\n (* Security fix *)\n+--------------------------+\n\n\nWhere to find the new packages:\n+-----------------------------+\n\nThanks to the friendly folks at the OSU Open Source Lab\n(http://osuosl.org) for donating FTP and rsync hosting\nto the Slackware project! :-)\n\nAlso see the \"Get Slack\" section on http://slackware.com for\nadditional mirror sites near you. \n\nUpdated package for Slackware 13.0:\nftp://ftp.slackware.com/pub/slackware/slackware-13.0/patches/packages/ntp-4.2.8-i486-1_slack13.0.txz\n\nUpdated package for Slackware x86_64 13.0:\nftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/packages/ntp-4.2.8-x86_64-1_slack13.0.txz\n\nUpdated package for Slackware 13.1:\nftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/ntp-4.2.8-i486-1_slack13.1.txz\n\nUpdated package for Slackware x86_64 13.1:\nftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/ntp-4.2.8-x86_64-1_slack13.1.txz\n\nUpdated package for Slackware 13.37:\nftp://ftp.slackware.com/pub/slackware/slackware-13.37/patches/packages/ntp-4.2.8-i486-1_slack13.37.txz\n\nUpdated package for Slackware x86_64 13.37:\nftp://ftp.slackware.com/pub/slackware/slackware64-13.37/patches/packages/ntp-4.2.8-x86_64-1_slack13.37.txz\n\nUpdated package for Slackware 14.0:\nftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/ntp-4.2.8-i486-1_slack14.0.txz\n\nUpdated package for Slackware x86_64 14.0:\nftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/ntp-4.2.8-x86_64-1_slack14.0.txz\n\nUpdated package for Slackware 14.1:\nftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/ntp-4.2.8-i486-1_slack14.1.txz\n\nUpdated package for Slackware x86_64 14.1:\nftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/ntp-4.2.8-x86_64-1_slack14.1.txz\n\nUpdated package for Slackware -current:\nftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/ntp-4.2.8-i486-1.txz\n\nUpdated package for Slackware x86_64 -current:\nftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/ntp-4.2.8-x86_64-1.txz\n\n\nMD5 signatures:\n+-------------+\n\nSlackware 13.0 package:\n18d7f09e90cf2434f59d7e9f11478fba ntp-4.2.8-i486-1_slack13.0.txz\n\nSlackware x86_64 13.0 package:\nedd178e3d2636433dd18f52331af17a5 ntp-4.2.8-x86_64-1_slack13.0.txz\n\nSlackware 13.1 package:\n4b6da6fa564b1fe00920d402ff97bd43 ntp-4.2.8-i486-1_slack13.1.txz\n\nSlackware x86_64 13.1 package:\n292ae7dbd3ea593c5e28cbba7c2b71fa ntp-4.2.8-x86_64-1_slack13.1.txz\n\nSlackware 13.37 package:\n294b8197d360f9a3cf8186619b60b73c ntp-4.2.8-i486-1_slack13.37.txz\n\nSlackware x86_64 13.37 package:\n7cd5b63f8371b1cc369bc56e4b4efd5a ntp-4.2.8-x86_64-1_slack13.37.txz\n\nSlackware 14.0 package:\n32eab67538c33e4669bda9200799a497 ntp-4.2.8-i486-1_slack14.0.txz\n\nSlackware x86_64 14.0 package:\n33ecf4845fa8533a12a98879815bde08 ntp-4.2.8-x86_64-1_slack14.0.txz\n\nSlackware 14.1 package:\nf2b45a45c846a909ae201176ce359939 ntp-4.2.8-i486-1_slack14.1.txz\n\nSlackware x86_64 14.1 package:\n12d7ab6e2541af4d1282621d3773e7f7 ntp-4.2.8-x86_64-1_slack14.1.txz\n\nSlackware -current package:\n5b2150cee9840d8bb547098cccde879a n/ntp-4.2.8-i486-1.txz\n\nSlackware x86_64 -current package:\n9ce09c5d6a60d3e2117988e4551e4af1 n/ntp-4.2.8-x86_64-1.txz\n\n\nInstallation instructions:\n+------------------------+\n\nUpgrade the package as root:\n# upgradepkg ntp-4.2.8-i486-1_slack14.1.txz\n\nThen, restart the NTP daemon:\n\n# sh /etc/rc.d/rc.ntpd restart\n\n\n+-----+\n\nSlackware Linux Security Team\nhttp://slackware.com/gpg-key\nsecurity@slackware.com\n\n+------------------------------------------------------------------------+\n| To leave the slackware-security mailing list: |\n+------------------------------------------------------------------------+\n| Send an email to majordomo@slackware.com with this text in the body of |\n| the email message: |\n| |\n| unsubscribe slackware-security |\n| |\n| You will get a confirmation message back containing instructions to |\n| complete the process. Please do not reply to this email address. ============================================================================\nUbuntu Security Notice USN-2449-1\nDecember 22, 2014\n\nntp vulnerabilities\n============================================================================\n\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 14.10\n- Ubuntu 14.04 LTS\n- Ubuntu 12.04 LTS\n- Ubuntu 10.04 LTS\n\nSummary:\n\nSeveral security issues were fixed in NTP. \n\nSoftware Description:\n- ntp: Network Time Protocol daemon and utility programs\n\nDetails:\n\nNeel Mehta discovered that NTP generated weak authentication keys. A remote\nattacker could possibly use this issue to brute force the authentication\nkey and send requests if permitted by IP restrictions. (CVE-2014-9293)\n\nStephen Roettger discovered that NTP generated weak MD5 keys. A remote\nattacker could possibly use this issue to brute force the MD5 key and spoof\na client or server. (CVE-2014-9294)\n\nStephen Roettger discovered that NTP contained buffer overflows in the\ncrypto_recv(), ctl_putdata() and configure() functions. In non-default\nconfigurations, a remote attacker could use these issues to cause NTP to\ncrash, resulting in a denial of service, or possibly execute arbitrary\ncode. The default compiler options for affected releases should reduce the\nvulnerability to a denial of service. In addition, attackers would be\nisolated by the NTP AppArmor profile. (CVE-2014-9295)\n\nStephen Roettger discovered that NTP incorrectly continued processing when\nhandling certain errors. (CVE-2014-9296)\n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 14.10:\n ntp 1:4.2.6.p5+dfsg-3ubuntu2.14.10.1\n\nUbuntu 14.04 LTS:\n ntp 1:4.2.6.p5+dfsg-3ubuntu2.14.04.1\n\nUbuntu 12.04 LTS:\n ntp 1:4.2.6.p3+dfsg-1ubuntu3.2\n\nUbuntu 10.04 LTS:\n ntp 1:4.2.4p8+dfsg-1ubuntu2.2\n\nAfter a standard system update you need to regenerate any MD5 keys that\nwere manually created with ntp-keygen. \n\nReferences:\n http://www.ubuntu.com/usn/usn-2449-1\n CVE-2014-9293, CVE-2014-9294, CVE-2014-9295, CVE-2014-9296\n\nPackage Information:\n https://launchpad.net/ubuntu/+source/ntp/1:4.2.6.p5+dfsg-3ubuntu2.14.10.1\n https://launchpad.net/ubuntu/+source/ntp/1:4.2.6.p5+dfsg-3ubuntu2.14.04.1\n https://launchpad.net/ubuntu/+source/ntp/1:4.2.6.p3+dfsg-1ubuntu3.2\n https://launchpad.net/ubuntu/+source/ntp/1:4.2.4p8+dfsg-1ubuntu2.2\n. \nUnder Step2: your ITRC operating systems\n - verify your operating system selections are checked and save. \n\nTo update an existing subscription: http://h30046.www3.hp.com/subSignIn.php\nLog in on the web page: Subscriber\u0027s choice for Business: sign-in. \nOn the web page: Subscriber\u0027s Choice: your profile summary - use Edit Profile\nto update appropriate sections. HP is\n\ncontinually reviewing and enhancing the security features of software\nproducts to provide customers with current\n\nsecure solutions. \n\n\"HP is broadly distributing this Security Bulletin in order to bring to the\nattention of users of the affected\n\nHP products the important security information contained in this Bulletin. HP\nrecommends that all users\n\ndetermine the applicability of this information to their individual\nsituations and take appropriate action. HP\n\ndoes not warrant that this information is necessarily accurate or complete\nfor all user situations and,\n\nconsequently, HP will not be responsible for any damages resulting from\nuser\u0027s use or disregard of the\n\ninformation provided in this Bulletin. To the extent permitted by law, HP\ndisclaims all warranties, either\n\nexpress or implied, including the warranties of merchantability and fitness\nfor a particular purpose, title and\n\nnon-infringement.\"\n\nCopyright 2015 Hewlett-Packard Development Company, L.P",
"sources": [
{
"db": "NVD",
"id": "CVE-2014-9296"
},
{
"db": "CERT/CC",
"id": "VU#852879"
},
{
"db": "JVNDB",
"id": "JVNDB-2014-007353"
},
{
"db": "BID",
"id": "71758"
},
{
"db": "VULMON",
"id": "CVE-2014-9296"
},
{
"db": "PACKETSTORM",
"id": "130481"
},
{
"db": "PACKETSTORM",
"id": "131356"
},
{
"db": "PACKETSTORM",
"id": "129711"
},
{
"db": "PACKETSTORM",
"id": "131149"
},
{
"db": "PACKETSTORM",
"id": "129680"
},
{
"db": "PACKETSTORM",
"id": "129693"
},
{
"db": "PACKETSTORM",
"id": "129684"
},
{
"db": "PACKETSTORM",
"id": "130709"
}
],
"trust": 3.42
},
"external_ids": {
"_id": null,
"data": [
{
"db": "CERT/CC",
"id": "VU#852879",
"trust": 3.1
},
{
"db": "NVD",
"id": "CVE-2014-9296",
"trust": 3.0
},
{
"db": "BID",
"id": "71758",
"trust": 1.4
},
{
"db": "ICS CERT",
"id": "ICSA-14-353-01",
"trust": 1.1
},
{
"db": "SECUNIA",
"id": "62209",
"trust": 1.1
},
{
"db": "MCAFEE",
"id": "SB10103",
"trust": 1.1
},
{
"db": "ICS CERT",
"id": "ICSA-14-353-01C",
"trust": 0.9
},
{
"db": "JVN",
"id": "JVNVU96605606",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2014-007353",
"trust": 0.8
},
{
"db": "ICS CERT",
"id": "ICSA-14-353-01A",
"trust": 0.3
},
{
"db": "JUNIPER",
"id": "JSA10663",
"trust": 0.3
},
{
"db": "VULMON",
"id": "CVE-2014-9296",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "130481",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "131356",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "129711",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "131149",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "129680",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "129693",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "129684",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "130709",
"trust": 0.1
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#852879"
},
{
"db": "VULMON",
"id": "CVE-2014-9296"
},
{
"db": "BID",
"id": "71758"
},
{
"db": "PACKETSTORM",
"id": "130481"
},
{
"db": "PACKETSTORM",
"id": "131356"
},
{
"db": "PACKETSTORM",
"id": "129711"
},
{
"db": "PACKETSTORM",
"id": "131149"
},
{
"db": "PACKETSTORM",
"id": "129680"
},
{
"db": "PACKETSTORM",
"id": "129693"
},
{
"db": "PACKETSTORM",
"id": "129684"
},
{
"db": "PACKETSTORM",
"id": "130709"
},
{
"db": "JVNDB",
"id": "JVNDB-2014-007353"
},
{
"db": "NVD",
"id": "CVE-2014-9296"
}
]
},
"id": "VAR-201412-0612",
"iot": {
"_id": null,
"data": true,
"sources": [
{
"db": "VARIoT devices database",
"id": null
}
],
"trust": 0.38031465625000005
},
"last_update_date": "2026-03-09T21:45:31.195000Z",
"patch": {
"_id": null,
"data": [
{
"title": "ntp-4.2.6p5-2.0.2.AXS4",
"trust": 0.8,
"url": "https://tsn.miraclelinux.com/tsn_local/index.php?m=errata\u0026a=detail\u0026eid=4190\u0026sType=\u0026sProduct=\u0026published=1"
},
{
"title": "cisco-sa-20141222-ntpd",
"trust": 0.8,
"url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141222-ntpd"
},
{
"title": "HPSBGN03277 SSRT101957",
"trust": 0.8,
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en\u0026cc=us\u0026objectID=c04582466"
},
{
"title": "NV15-009",
"trust": 0.8,
"url": "http://jpn.nec.com/security-info/secinfo/nv15-009.html"
},
{
"title": "Bug 2670",
"trust": 0.8,
"url": "http://bugs.ntp.org/show_bug.cgi?id=2670"
},
{
"title": "All diffs for ChangeSet 1.3249",
"trust": 0.8,
"url": "http://bk1.ntp.org/ntp-dev/?PAGE=patch\u0026REV=548ad06feXHK1HlZoY-WZVyynwvwAg"
},
{
"title": "Security Notice",
"trust": 0.8,
"url": "http://support.ntp.org/bin/view/Main/SecurityNotice"
},
{
"title": "Oracle Critical Patch Update Advisory - October 2016",
"trust": 0.8,
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html"
},
{
"title": "Text Form of Oracle Critical Patch Update - October 2016 Risk Matrices",
"trust": 0.8,
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2016verbose-2881725.html"
},
{
"title": "Bug 1176040",
"trust": 0.8,
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176040"
},
{
"title": "RHSA-2015:0104",
"trust": 0.8,
"url": "https://rhn.redhat.com/errata/RHSA-2015-0104.html"
},
{
"title": "Multiple vulnerabilities in NTP",
"trust": 0.8,
"url": "https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_ntp"
},
{
"title": "October 2016 Critical Patch Update Released",
"trust": 0.8,
"url": "https://blogs.oracle.com/security/entry/october_2016_critical_patch_update"
},
{
"title": "\u30b5\u30fc\u30d0\u30fb\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u88fd\u54c1 Network Time Protocol daemon (ntpd)\u306e\u8106\u5f31\u6027(CVE-2014-9293\u301c9296)\u306b\u3088\u308b\u5f71\u97ff\u306b\u3064\u3044\u3066",
"trust": 0.8,
"url": "http://www.hitachi.co.jp/products/it/server/security/info/vulnerable/ntpd_cve-2014-9293.html"
},
{
"title": "cisco-sa-20141222-ntpd",
"trust": 0.8,
"url": "http://www.cisco.com/cisco/web/support/JP/112/1127/1127934_cisco-sa-20141222-ntpd-j.html"
},
{
"title": "Red Hat: Important: ntp security update",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20142024 - Security Advisory"
},
{
"title": "Red Hat: Important: ntp security update",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20150104 - Security Advisory"
},
{
"title": "Red Hat: CVE-2014-9296",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database\u0026qid=CVE-2014-9296"
},
{
"title": "Debian CVElist Bug Report Logs: ntp: CVE-2014-9293 CVE-2014-9294 CVE-2014-9295 CVE-2014-9296",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=1bb105aaeb75e38cf89e5f63d6e49db9"
},
{
"title": "Ubuntu Security Notice: ntp vulnerabilities",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-2449-1"
},
{
"title": "Debian Security Advisories: DSA-3108-1 ntp -- security update",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=d5c63d464b27e49c6a53057fab75a16d"
},
{
"title": "Amazon Linux AMI: ALAS-2014-462",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=ALAS-2014-462"
},
{
"title": "Tenable Security Advisories: [R3] Tenable Appliance Affected by NTP Vulnerabilities",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=tenable_security_advisories\u0026qid=TNS-2015-01"
},
{
"title": "Citrix Security Bulletins: Citrix Security Advisory for NTP Vulnerabilities",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=citrix_security_bulletins\u0026qid=e9432b762bf2c2945bfb43af8d6842d5"
},
{
"title": "Oracle: Oracle Critical Patch Update Advisory - October 2016",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=oracle_advisories\u0026qid=05aabe19d38058b7814ef5514aab4c0c"
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2014-9296"
},
{
"db": "JVNDB",
"id": "JVNDB-2014-007353"
}
]
},
"problemtype_data": {
"_id": null,
"data": [
{
"problemtype": "CWE-17",
"trust": 1.0
},
{
"problemtype": "CWE-Other",
"trust": 0.8
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2014-007353"
},
{
"db": "NVD",
"id": "CVE-2014-9296"
}
]
},
"references": {
"_id": null,
"data": [
{
"trust": 2.4,
"url": "http://www.kb.cert.org/vuls/id/852879"
},
{
"trust": 2.3,
"url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20141222-ntpd"
},
{
"trust": 2.1,
"url": "http://support.ntp.org/bin/view/main/securitynotice"
},
{
"trust": 2.0,
"url": "http://advisories.mageia.org/mgasa-2014-0541.html"
},
{
"trust": 1.6,
"url": "http://lists.ntp.org/pipermail/announce/2014-december/000122.html"
},
{
"trust": 1.4,
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html"
},
{
"trust": 1.1,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-14-353-01"
},
{
"trust": 1.1,
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1176040"
},
{
"trust": 1.1,
"url": "http://bk1.ntp.org/ntp-dev/?page=patch\u0026rev=548ad06fexhk1hlzoy-wzvyynwvwag"
},
{
"trust": 1.1,
"url": "http://bugs.ntp.org/show_bug.cgi?id=2670"
},
{
"trust": 1.1,
"url": "http://rhn.redhat.com/errata/rhsa-2015-0104.html"
},
{
"trust": 1.1,
"url": "http://marc.info/?l=bugtraq\u0026m=142590659431171\u0026w=2"
},
{
"trust": 1.1,
"url": "http://www.mandriva.com/security/advisories?name=mdvsa-2015:003"
},
{
"trust": 1.1,
"url": "http://marc.info/?l=bugtraq\u0026m=142853370924302\u0026w=2"
},
{
"trust": 1.1,
"url": "http://marc.info/?l=bugtraq\u0026m=144182594518755\u0026w=2"
},
{
"trust": 1.1,
"url": "http://www.securityfocus.com/bid/71758"
},
{
"trust": 1.1,
"url": "https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c04790232"
},
{
"trust": 1.1,
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=sb10103"
},
{
"trust": 1.1,
"url": "http://secunia.com/advisories/62209"
},
{
"trust": 1.1,
"url": "http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00020.html"
},
{
"trust": 1.1,
"url": "https://www.arista.com/en/support/advisories-notices/security-advisories/1047-security-advisory-8"
},
{
"trust": 1.0,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-9296"
},
{
"trust": 0.9,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-14-353-01c"
},
{
"trust": 0.8,
"url": "http://support.ntp.org/bin/view/support/accessrestrictions#section_6.5.2"
},
{
"trust": 0.8,
"url": "http://www.ntp.org/downloads.html"
},
{
"trust": 0.8,
"url": "http://www.ntp.org/ntpfaq/ntp-s-algo-crypt.htm"
},
{
"trust": 0.8,
"url": "http://googleprojectzero.blogspot.com/2015/01/finding-and-exploiting-ntpd.html"
},
{
"trust": 0.8,
"url": "https://support.apple.com/en-us/ht6601"
},
{
"trust": 0.8,
"url": "https://support.f5.com/kb/en-us/solutions/public/15000/900/sol15936.html"
},
{
"trust": 0.8,
"url": "https://www.freebsd.org/security/advisories/freebsd-sa-15:07.ntp.asc"
},
{
"trust": 0.8,
"url": "https://rhn.redhat.com/errata/rhsa-2014-2024.html"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-9294"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-9295"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-9293"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-9296"
},
{
"trust": 0.8,
"url": "http://jvn.jp/vu/jvnvu96605606/index.html"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-9296"
},
{
"trust": 0.3,
"url": "https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_ntp"
},
{
"trust": 0.3,
"url": "http://www.ntp.org/"
},
{
"trust": 0.3,
"url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10663\u0026cat=sirt_1\u0026actp=list"
},
{
"trust": 0.3,
"url": "http://www.huawei.com/en/security/psirt/security-bulletins/security-notices/archive/hw-408044.htm"
},
{
"trust": 0.3,
"url": "http://support.citrix.com/article/ctx200355"
},
{
"trust": 0.3,
"url": "http://seclists.org/bugtraq/2015/jan/att-97/esa-2015-004.txt"
},
{
"trust": 0.3,
"url": "https://www.freebsd.org/security/advisories/freebsd-sa-14:31.ntp.asc"
},
{
"trust": 0.3,
"url": "https://h20564.www2.hp.com/hpsc/doc/public/display?docid=emr_na-c04582466"
},
{
"trust": 0.3,
"url": "http://seclists.org/bugtraq/2015/sep/41"
},
{
"trust": 0.3,
"url": "https://h20564.www2.hp.com/hpsc/doc/public/display?docid=emr_na-c04554677"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21696755"
},
{
"trust": 0.3,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-14-353-01a"
},
{
"trust": 0.3,
"url": "https://downloads.avaya.com/css/p8/documents/101006440"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=isg3t1022036"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21696812"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=nas8n1020645"
},
{
"trust": 0.3,
"url": "https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5097490"
},
{
"trust": 0.3,
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21966675"
},
{
"trust": 0.3,
"url": "http://www.hitachi.co.jp/products/it/server/security/global/info/vulnerable/ntpd_cve-2014-9293.html"
},
{
"trust": 0.3,
"url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/"
},
{
"trust": 0.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-9297"
},
{
"trust": 0.2,
"url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/"
},
{
"trust": 0.2,
"url": "http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins"
},
{
"trust": 0.2,
"url": "https://www.hp.com/go/swa"
},
{
"trust": 0.2,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-9294"
},
{
"trust": 0.2,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-9293"
},
{
"trust": 0.2,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-9295"
},
{
"trust": 0.2,
"url": "http://www.debian.org/security/"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/17.html"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/errata/rhsa-2014:2024"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/security/cve/cve-2014-9296"
},
{
"trust": 0.1,
"url": "https://usn.ubuntu.com/2449-1/"
},
{
"trust": 0.1,
"url": "https://h20392.www2.hp.com/portal/sw"
},
{
"trust": 0.1,
"url": "http://h20565.www2.hp.com/portal/site/hpsc?"
},
{
"trust": 0.1,
"url": "https://h20392.www2.hp.com/portal/swdepot/displayproductinfo.do?productnumber"
},
{
"trust": 0.1,
"url": "http://www.mandriva.com/en/support/security/"
},
{
"trust": 0.1,
"url": "http://www.mandriva.com/en/support/security/advisories/"
},
{
"trust": 0.1,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-9297"
},
{
"trust": 0.1,
"url": "http://advisories.mageia.org/mgasa-2015-0063.html"
},
{
"trust": 0.1,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-9298"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2014-9298"
},
{
"trust": 0.1,
"url": "http://www.debian.org/security/faq"
},
{
"trust": 0.1,
"url": "http://slackware.com"
},
{
"trust": 0.1,
"url": "http://osuosl.org)"
},
{
"trust": 0.1,
"url": "http://slackware.com/gpg-key"
},
{
"trust": 0.1,
"url": "https://launchpad.net/ubuntu/+source/ntp/1:4.2.6.p5+dfsg-3ubuntu2.14.04.1"
},
{
"trust": 0.1,
"url": "https://launchpad.net/ubuntu/+source/ntp/1:4.2.6.p3+dfsg-1ubuntu3.2"
},
{
"trust": 0.1,
"url": "https://launchpad.net/ubuntu/+source/ntp/1:4.2.6.p5+dfsg-3ubuntu2.14.10.1"
},
{
"trust": 0.1,
"url": "http://www.ubuntu.com/usn/usn-2449-1"
},
{
"trust": 0.1,
"url": "https://launchpad.net/ubuntu/+source/ntp/1:4.2.4p8+dfsg-1ubuntu2.2"
},
{
"trust": 0.1,
"url": "http://h30046.www3.hp.com/driveralertprofile.php?regioncode=na\u0026langcode=useng"
},
{
"trust": 0.1,
"url": "http://www.itrc.hp.com/service/cki/secbullarchive.do"
},
{
"trust": 0.1,
"url": "https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetsea"
},
{
"trust": 0.1,
"url": "http://h30046.www3.hp.com/subsignin.php"
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#852879"
},
{
"db": "VULMON",
"id": "CVE-2014-9296"
},
{
"db": "BID",
"id": "71758"
},
{
"db": "PACKETSTORM",
"id": "130481"
},
{
"db": "PACKETSTORM",
"id": "131356"
},
{
"db": "PACKETSTORM",
"id": "129711"
},
{
"db": "PACKETSTORM",
"id": "131149"
},
{
"db": "PACKETSTORM",
"id": "129680"
},
{
"db": "PACKETSTORM",
"id": "129693"
},
{
"db": "PACKETSTORM",
"id": "129684"
},
{
"db": "PACKETSTORM",
"id": "130709"
},
{
"db": "JVNDB",
"id": "JVNDB-2014-007353"
},
{
"db": "NVD",
"id": "CVE-2014-9296"
}
]
},
"sources": {
"_id": null,
"data": [
{
"db": "CERT/CC",
"id": "VU#852879",
"ident": null
},
{
"db": "VULMON",
"id": "CVE-2014-9296",
"ident": null
},
{
"db": "BID",
"id": "71758",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "130481",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "131356",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "129711",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "131149",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "129680",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "129693",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "129684",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "130709",
"ident": null
},
{
"db": "JVNDB",
"id": "JVNDB-2014-007353",
"ident": null
},
{
"db": "NVD",
"id": "CVE-2014-9296",
"ident": null
}
]
},
"sources_release_date": {
"_id": null,
"data": [
{
"date": "2014-12-19T00:00:00",
"db": "CERT/CC",
"id": "VU#852879",
"ident": null
},
{
"date": "2014-12-20T00:00:00",
"db": "VULMON",
"id": "CVE-2014-9296",
"ident": null
},
{
"date": "2014-12-19T00:00:00",
"db": "BID",
"id": "71758",
"ident": null
},
{
"date": "2015-02-19T19:22:00",
"db": "PACKETSTORM",
"id": "130481",
"ident": null
},
{
"date": "2015-04-09T16:21:15",
"db": "PACKETSTORM",
"id": "131356",
"ident": null
},
{
"date": "2014-12-24T16:25:31",
"db": "PACKETSTORM",
"id": "129711",
"ident": null
},
{
"date": "2015-03-30T21:48:37",
"db": "PACKETSTORM",
"id": "131149",
"ident": null
},
{
"date": "2014-12-22T17:15:01",
"db": "PACKETSTORM",
"id": "129680",
"ident": null
},
{
"date": "2014-12-23T15:41:03",
"db": "PACKETSTORM",
"id": "129693",
"ident": null
},
{
"date": "2014-12-22T17:16:05",
"db": "PACKETSTORM",
"id": "129684",
"ident": null
},
{
"date": "2015-03-09T20:18:03",
"db": "PACKETSTORM",
"id": "130709",
"ident": null
},
{
"date": "2014-12-24T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2014-007353",
"ident": null
},
{
"date": "2014-12-20T02:59:03.837000",
"db": "NVD",
"id": "CVE-2014-9296",
"ident": null
}
]
},
"sources_update_date": {
"_id": null,
"data": [
{
"date": "2015-10-27T00:00:00",
"db": "CERT/CC",
"id": "VU#852879",
"ident": null
},
{
"date": "2021-11-17T00:00:00",
"db": "VULMON",
"id": "CVE-2014-9296",
"ident": null
},
{
"date": "2016-10-26T08:13:00",
"db": "BID",
"id": "71758",
"ident": null
},
{
"date": "2016-11-22T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2014-007353",
"ident": null
},
{
"date": "2025-04-12T10:46:40.837000",
"db": "NVD",
"id": "CVE-2014-9296",
"ident": null
}
]
},
"threat_type": {
"_id": null,
"data": "network",
"sources": [
{
"db": "BID",
"id": "71758"
}
],
"trust": 0.3
},
"title": {
"_id": null,
"data": "NTP Project Network Time Protocol daemon (ntpd) contains multiple vulnerabilities (Updated)",
"sources": [
{
"db": "CERT/CC",
"id": "VU#852879"
}
],
"trust": 0.8
},
"type": {
"_id": null,
"data": "Unknown",
"sources": [
{
"db": "BID",
"id": "71758"
}
],
"trust": 0.3
}
}
VDE-2022-032
Vulnerability from csaf_aumariestergmbhcokg - Published: 2022-08-09 08:00 - Updated: 2022-08-09 08:00Summary
AUMA: Multiple Vulnerabilities in Automation Runtime NTP Service
Notes
Summary: The SIMA2 Master Station features an NTP service based on ntpd, a reference implementation of the Network Time Protocol (NTP). Affected SIMA2 Master Stations with software version < V2.6 include an outdated version of ntpd which is affected by a large number of vulnerabilities
Mitigation: 1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2
2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:
- Allow NTP traffic to/from trusted NTP clients only
- Monitor the network for malicious NTP traffic going to/coming from the SIMA2
- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)
3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:
- Use trusted NTP servers only
- Allow NTP traffic to/from trusted NTP servers only
- Monitor the network for malicious NTP traffic targeting the SIMA2
- Filter malicious NTP traffic targeting the SIMA2
- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)
Remediation: Upgrade your SIMA2 to software version 2.6 or above. The NTP service of the SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.
ntp_request.c in ntpd in NTP before 4.2.4p8, and 4.2.5, allows remote attackers to cause a denial of service (CPU and bandwidth consumption) by using MODE_PRIVATE to send a spoofed (1) request or (2) response packet that triggers a continuous exchange of MODE_PRIVATE error responses between two NTP daemons.
6.4 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The monlist feature in ntp_request.c in ntpd in NTP before 4.2.7p26 allows remote attackers to cause a denial of service (traffic amplification) via forged (1) REQ_MON_GETLIST or (2) REQ_MON_GETLIST_1 requests, as exploited in the wild in December 2013.
CWE-20 - Improper Input ValidationAffected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The config_auth function in ntpd in NTP before 4.2.7p11, when an auth key is not configured, improperly generates a key, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.
7.5 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
util/ntp-keygen.c in ntp-keygen in NTP before 4.2.7p230 uses a weak RNG seed, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.
7.5 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
Multiple stack-based buffer overflows in ntpd in NTP before 4.2.8 allow remote attackers to execute arbitrary code via a crafted packet, related to (1) the crypto_recv function when the Autokey Authentication feature is used, (2) the ctl_putdata function, and (3) the configure function.
7.5 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The receive function in ntp_proto.c in ntpd in NTP before 4.2.8 continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets.
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntp_crypto.c in ntpd in NTP 4.x before 4.2.8p1, when Autokey Authentication is enabled, allows remote attackers to obtain sensitive information from process memory or cause a denial of service (daemon crash) via a packet containing an extension field with an invalid value for the length of its value field.
5.8 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted packets containing particular autokey operations. NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash). NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash). NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.
6.5 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The ntpd client in NTP 4.x before 4.2.8p4 and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service via a number of crafted "KOD" messages.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
Use-after-free vulnerability in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to possibly execute arbitrary code or cause a denial of service (crash) via crafted packets.
8.8 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to cause a denial of service (infinite loop or crash) by pointing the key file at the log file.
6.5 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
Directory traversal vulnerability in the save_config function in ntpd in ntp_control.c in NTP before 4.2.8p4, when used on systems that do not use '\' or '/' characters for directory separation such as OpenVMS, allows remote authenticated users to overwrite arbitrary files.
6.5 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpq in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted mode 6 response packets.
5.9 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
Buffer overflow in the password management functionality in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted key file.
8.8 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The decodenetnum function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (assertion failure) via a 6 or mode 7 packet containing a long data value.
6.5 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
Crypto-NAK packets in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to bypass authentication.
9.8 (Critical)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p6 and 4.3.x before 4.3.90, when configured in broadcast mode, allows man-in-the-middle attackers to conduct replay attacks by sniffing the network.
6.5 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP 4.x before 4.2.8p6 and 4.3.x before 4.3.90 do not verify peer associations of symmetric keys when authenticating packets, which might allow remote attackers to conduct impersonation attacks via an arbitrary trusted key, aka a "skeleton key."
7.7 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The nextvar function in NTP before 4.2.8p6 and 4.3.x before 4.3.90 does not properly validate the length of its input, which allows an attacker to cause a denial of service (application crash).
6.2 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The ntpq saveconfig command in NTP 4.1.2, 4.2.x before 4.2.8p6, 4.3, 4.3.25, 4.3.70, and 4.3.77 does not properly filter special characters, which allows attackers to cause unspecified impact via a crafted filename.
4.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service (NULL pointer dereference) via a ntpdc reslist command.
5.9 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p6 and 4.3.0 before 4.3.90 allows a remote attackers to cause a denial of service (stack exhaustion) via an ntpdc relist command, which triggers recursive traversal of the restriction list.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service (client-server association tear down) by sending broadcast packets with invalid authentication to a broadcast client.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to bypass the origin timestamp validation via a packet with an origin timestamp set to zero.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpq in NTP before 4.2.8p7 allows remote attackers to obtain origin timestamps and then impersonate peers via unspecified vectors.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The ntpq protocol in NTP before 4.2.8p7 allows remote attackers to conduct replay attacks by sniffing the network.
4.8 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The getresponse function in ntpq in NTP versions before 4.2.8p9 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service (infinite loop) via crafted packets with incorrect values.
5.9 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
An off-path attacker can cause a preemptible client association to be demobilized in NTP 4.2.8p4 and earlier and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 by sending a crypto NAK packet to a victim client with a spoofed source address of an existing associated peer. This is true even if authentication is enabled.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
An exploitable vulnerability exists in the message authentication functionality of libntp in ntp 4.2.8p4 and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92. An attacker can send a series of crafted messages to attempt to recover the message digest key.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p7 and 4.3.x before 4.3.92 allows remote attackers to cause a denial of service (prevent subsequent authentication) by leveraging knowledge of the controlkey or requestkey and sending a crafted packet to ntpd, which changes the value of trustedkey, controlkey, or requestkey. NOTE: this vulnerability exists because of a CVE-2016-2516 regression.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The MATCH_ASSOC function in NTP before version 4.2.8p9 and 4.3.x before 4.3.92 allows remote attackers to cause an out-of-bounds reference via an addpeer request with a large hmode value.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (ephemeral-association demobilization) by sending a spoofed crypto-NAK packet with incorrect authentication data at a certain time.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The process_packet function in ntp_proto.c in ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (peer-variable modification) by sending spoofed packets from many source IP addresses in a certain scenario, as demonstrated by triggering an incorrect leap indication.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in NTP 4.x before 4.2.8p8, when autokey is enabled, allows remote attackers to cause a denial of service (peer-variable clearing and association outage) by sending (1) a spoofed crypto-NAK packet or (2) a packet with an incorrect MAC value at a certain time.
5.9 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The broadcast mode replay prevention functionality in ntpd in NTP before 4.2.8p9 allows remote attackers to cause a denial of service (reject broadcast mode packets) via a crafted broadcast mode packet.
4.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p9 allows remote attackers to bypass the origin timestamp protection mechanism via an origin timestamp of zero. NOTE: this vulnerability exists because of a CVE-2015-8138 regression.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p9 does not properly perform the initial sync calculations, which allows remote attackers to unspecified impact via unknown vectors, related to a "root distance that did not include the peer dispersion."
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The read_mru_list function in NTP before 4.2.8p9 allows remote attackers to cause a denial of service (crash) via a crafted mrulist query.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The control mode (mode 6) functionality in ntpd in NTP before 4.2.8p9 allows remote attackers to set or unset traps via a crafted control mode packet.
6.5 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in NTP before 4.2.8p9, when the trap service is enabled, allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted packet.
5.9 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The mx4200_send function in the legacy MX4200 refclock in NTP before 4.2.8p10 and 4.3.x before 4.3.94 does not properly handle the return value of the snprintf function, which allows local users to execute arbitrary code via unspecified vectors, which trigger an out-of-bounds memory write.
7.8 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
Multiple buffer overflows in the ctl_put* functions in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allow remote authenticated users to have unspecified impact via a long variable.
8.8 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
Stack-based buffer overflow in the reslist function in ntpq in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote servers have unspecified impact via a long flagstr variable in a restriction list response.
8.8 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
Buffer overflow in the legacy Datum Programmable Time Server (DPTS) refclock driver in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows local users to have unspecified impact via a crafted /dev/datum device.
7.8 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote authenticated users to cause a denial of service (daemon crash) via an invalid setting in a :config directive, related to the unpeer option.
6.5 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote attackers to cause a denial of service (ntpd crash) via a malformed mode configuration directive.
6.5 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
Stack-based buffer overflow in ntpq and ntpdc of NTP version 4.2.8p11 allows an attacker to achieve code execution or escalate to higher privileges via a long string as the argument for an IPv4 or IPv6 command-line parameter. NOTE: It is unclear whether there are any common situations in which ntpq or ntpdc is used with a command line from an untrusted source.
9.8 (Critical)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The ctl_getitem method in ntpd in ntp-4.2.8p6 before 4.2.8p11 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mode 6 packet with a ntpd instance from 4.2.8p6 through 4.2.8p10.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
Buffer overflow in the decodearr function in ntpq in ntp 4.2.8p6 through 4.2.8p10 allows remote attackers to execute arbitrary code by leveraging an ntpq query and sending a response with a crafted array.
9.8 (Critical)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in ntp 4.2.8p4 before 4.2.8p11 drops bad packets before updating the "received" timestamp, which allows remote attackers to cause a denial of service (disruption) by sending a packet with a zero-origin timestamp causing the association to reset and setting the contents of the packet as the most recent timestamp. This issue is a result of an incomplete fix for CVE-2015-7704.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The protocol engine in ntp 4.2.6 before 4.2.8p11 allows a remote attackers to cause a denial of service (disruption) by continually sending a packet with a zero-origin timestamp and source IP address of the "other side" of an interleaved association causing the victim ntpd to reset its association.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in ntp 4.2.8p10, 4.2.8p11, 4.2.8p12 and 4.2.8p13 allow remote attackers to prevent a broadcast client from synchronizing its clock with a broadcast NTP server via soofed mode 3 and mode 5 packets. The attacker must either be a part of the same broadcast network or control a slave in that broadcast network that can capture certain required packets on the attacker's behalf and send them to the attacker.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP through 4.2.8p12 has a NULL Pointer Dereference.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows an off-path attacker to block unauthenticated synchronization via a server mode packet with a spoofed source IP address, because transmissions are rescheduled even when a packet lacks a valid origin timestamp.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows remote attackers to cause a denial of service (daemon exit or system time change) by predicting transmit timestamps for use in spoofed packets. The victim must be relying on unauthenticated IPv4 time sources. There must be an off-path attacker who can query time from the victim's ntpd instance.
7.4 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in ntp 4.2.8 before 4.2.8p15 and 4.3.x before 4.3.101 allows remote attackers to cause a denial of service (memory consumption) by sending packets, because memory is not freed in situations where a CMAC key is used and associated with a CMAC algorithm in the ntp.keys file.
4.9 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
Memory leak in the CRYPTO_ASSOC function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (memory consumption).
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The panic_gate check in NTP before 4.2.8p5 is only re-enabled after the first change to the system clock that was greater than 128 milliseconds by default, which allows remote attackers to set NTP to an arbitrary time when started with the -g option, or to alter the time by up to 900 seconds otherwise by responding to an unspecified number of requests from trusted sources, and leveraging a resulting denial of service (abort and restart).
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The datalen parameter in the refclock driver in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a negative input value.
9.8 (Critical)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The rate limiting feature in NTP 4.x before 4.2.8p4 and 4.3.x before 4.3.77 allows remote attackers to have unspecified impact via a large number of crafted requests.
9.8 (Critical)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
The "pidfile" or "driftfile" directives in NTP ntpd 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77, when ntpd is configured to allow remote configuration, allows remote attackers with an IP address that is allowed to send configuration requests, and with knowledge of the remote configuration password to write to arbitrary files via the :config command.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p9 changes the peer structure to the interface it receives the response from a source, which allows remote attackers to cause a denial of service (prevent communication with a source) by sending a response for a source to an interface the source does not use.
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in NTP before 4.2.8p9 allows remote attackers to cause a denial of service (reject broadcast mode packets) via the poll interval in a broadcast packet.
4.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p9 rate limits responses received from the configured sources when rate limiting for all associations is enabled, which allows remote attackers to cause a denial of service (prevent responses from the sources) by sending responses with a spoofed source address.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in NTP before 4.2.8p8 allows remote attackers to cause a denial of service (daemon crash) via a crypto-NAK packet. NOTE: this vulnerability exists because of an incorrect fix for CVE-2016-1547.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (interleaved-mode transition and time change) via a spoofed broadcast packet. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-1548.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in NTP before 4.2.8p7 and 4.3.x before 4.3.92 allows remote attackers to cause a denial of service (ntpd abort) by a large request data value, which triggers the ctl_getitem function to return a NULL value.
5.9 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
NTP before 4.2.8p7 and 4.3.x before 4.3.92, when mode7 is enabled, allows remote attackers to cause a denial of service (ntpd abort) by using the same IP address multiple times in an unconfig directive.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
ntpd in NTP 4.2.8p3 and NTPsec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 relies on the underlying operating system to protect it from requests that impersonate reference clocks. Because reference clocks are treated like other peers and stored in the same structure, any packet with a source ip address of a reference clock (127.127.1.1 for example) that reaches the receive() function will match that reference clock's peer record and will be treated as a trusted peer. Any system that lacks the typical martian packet filtering which would block these packets is in danger of having its time controlled by an attacker.
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
A malicious authenticated peer can create arbitrarily-many ephemeral associations in order to win the clock selection algorithm in ntpd in NTP 4.2.8p4 and earlier and NTPsec 3e160db8dc248a0bcb053b56a80167dc742d2b74 and a5fb34b9cc89b92a8fef2f459004865c93bb7f92 and modify a victim's clock.
6.5 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
An attacker can spoof a packet from a legitimate ntpd server with an origin timestamp that matches the peer->dst timestamp recorded for that server. After making this switch, the client in NTP 4.2.8p4 and earlier and NTPSec aa48d001683e5b791a743ec9c575aaf7d867a2b0c will reject all future legitimate server responses. It is possible to force the victim client to move time after the mode has been changed. ntpq gives no indication that the mode has been switched.
7.2 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station V2.6
AUMA / Software / SIMA² Master Station
|
V2.6 |
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMA² Master Station < V2.6
AUMA / Software / SIMA² Master Station
|
<V2.6 |
Mitigation
Vendor Fix
|
References
4 references
Acknowledgments
CERT@VDE
certvde.com
{
"document": {
"acknowledgments": [
{
"organization": "CERT@VDE",
"summary": "coordination",
"urls": [
"https://certvde.com"
]
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-GB",
"notes": [
{
"category": "summary",
"text": "The SIMA2 Master Station features an NTP service based on ntpd, a reference implementation of the Network Time Protocol (NTP). Affected SIMA2 Master Stations with software version \u003c V2.6 include an outdated version of ntpd which is affected by a large number of vulnerabilities",
"title": "Summary"
},
{
"category": "description",
"text": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"title": "Mitigation"
},
{
"category": "description",
"text": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"title": "Remediation"
}
],
"publisher": {
"category": "vendor",
"contact_details": "psirt@auma.com",
"name": "AUMA Riester GmbH \u0026 Co. KG",
"namespace": "https://auma.com"
},
"references": [
{
"category": "self",
"summary": "VDE-2022-032: AUMA: Multiple Vulnerabilities in Automation Runtime NTP Service - HTML",
"url": "https://certvde.com/en/advisories/VDE-2022-032/"
},
{
"category": "self",
"summary": "VDE-2022-032: AUMA: Multiple Vulnerabilities in Automation Runtime NTP Service - CSAF",
"url": "https://auma.csaf-tp.certvde.com/.well-known/csaf/white/2022/vde-2022-032.json"
},
{
"category": "external",
"summary": "AUMA PSIRT",
"url": "https://www.auma.com/en_GB/service/psirt"
},
{
"category": "external",
"summary": "CERT@VDE Security Advisories for AUMA Riester GmbH \u0026 Co. KG",
"url": "https://certvde.com/en/advisories/vendor/auma/"
}
],
"title": "AUMA: Multiple Vulnerabilities in Automation Runtime NTP Service",
"tracking": {
"aliases": [
"VDE-2022-032"
],
"current_release_date": "2022-08-09T08:00:00.000Z",
"generator": {
"date": "2025-05-05T07:36:58.640Z",
"engine": {
"name": "Secvisogram",
"version": "2.5.24"
}
},
"id": "VDE-2022-032",
"initial_release_date": "2022-08-09T08:00:00.000Z",
"revision_history": [
{
"date": "2022-08-09T08:00:00.000Z",
"number": "1",
"summary": "Initial revision."
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV2.6",
"product": {
"name": "SIMA\u00b2 Master Station \u003c V2.6",
"product_id": "CSAFPID-51001"
}
},
{
"category": "product_version",
"name": "V2.6",
"product": {
"name": "SIMA\u00b2 Master Station V2.6",
"product_id": "CSAFPID-52001"
}
}
],
"category": "product_name",
"name": "SIMA\u00b2 Master Station"
}
],
"category": "product_family",
"name": "Software"
}
],
"category": "vendor",
"name": "AUMA"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2009-3563",
"notes": [
{
"category": "description",
"text": "ntp_request.c in ntpd in NTP before 4.2.4p8, and 4.2.5, allows remote attackers to cause a denial of service (CPU and bandwidth consumption) by using MODE_PRIVATE to send a spoofed (1) request or (2) response packet that triggers a continuous exchange of MODE_PRIVATE error responses between two NTP daemons.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.4,
"confidentialityImpact": "NONE",
"environmentalScore": 6.4,
"integrityImpact": "PARTIAL",
"temporalScore": 6.4,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:P",
"version": "2.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2009-3563"
},
{
"cve": "CVE-2013-5211",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "The monlist feature in ntp_request.c in ntpd in NTP before 4.2.7p26 allows remote attackers to cause a denial of service (traffic amplification) via forged (1) REQ_MON_GETLIST or (2) REQ_MON_GETLIST_1 requests, as exploited in the wild in December 2013.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5,
"confidentialityImpact": "NONE",
"environmentalScore": 5,
"integrityImpact": "NONE",
"temporalScore": 5,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2013-5211"
},
{
"cve": "CVE-2014-9293",
"notes": [
{
"category": "description",
"text": "The config_auth function in ntpd in NTP before 4.2.7p11, when an auth key is not configured, improperly generates a key, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"environmentalScore": 7.5,
"integrityImpact": "PARTIAL",
"temporalScore": 7.5,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2014-9293"
},
{
"cve": "CVE-2014-9294",
"notes": [
{
"category": "description",
"text": "util/ntp-keygen.c in ntp-keygen in NTP before 4.2.7p230 uses a weak RNG seed, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"environmentalScore": 7.5,
"integrityImpact": "PARTIAL",
"temporalScore": 7.5,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2014-9294"
},
{
"cve": "CVE-2014-9295",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "description",
"text": "Multiple stack-based buffer overflows in ntpd in NTP before 4.2.8 allow remote attackers to execute arbitrary code via a crafted packet, related to (1) the crypto_recv function when the Autokey Authentication feature is used, (2) the ctl_putdata function, and (3) the configure function.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"environmentalScore": 7.5,
"integrityImpact": "PARTIAL",
"temporalScore": 7.5,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2014-9295"
},
{
"cve": "CVE-2014-9296",
"notes": [
{
"category": "description",
"text": "The receive function in ntp_proto.c in ntpd in NTP before 4.2.8 continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5,
"confidentialityImpact": "NONE",
"environmentalScore": 5,
"integrityImpact": "NONE",
"temporalScore": 5,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2014-9296"
},
{
"cve": "CVE-2014-9750",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "ntp_crypto.c in ntpd in NTP 4.x before 4.2.8p1, when Autokey Authentication is enabled, allows remote attackers to obtain sensitive information from process memory or cause a denial of service (daemon crash) via a packet containing an extension field with an invalid value for the length of its value field.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.8,
"confidentialityImpact": "PARTIAL",
"environmentalScore": 5.8,
"integrityImpact": "NONE",
"temporalScore": 5.8,
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P",
"version": "2.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2014-9750"
},
{
"cve": "CVE-2015-7691",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted packets containing particular autokey operations. NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7691"
},
{
"cve": "CVE-2015-7692",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash). NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7692"
},
{
"cve": "CVE-2015-7702",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash). NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7702"
},
{
"cve": "CVE-2015-7704",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "The ntpd client in NTP 4.x before 4.2.8p4 and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service via a number of crafted \"KOD\" messages.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7704"
},
{
"cve": "CVE-2015-7849",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "description",
"text": "Use-after-free vulnerability in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to possibly execute arbitrary code or cause a denial of service (crash) via crafted packets.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7849"
},
{
"cve": "CVE-2015-7850",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"notes": [
{
"category": "description",
"text": "ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to cause a denial of service (infinite loop or crash) by pointing the key file at the log file.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7850"
},
{
"cve": "CVE-2015-7851",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "description",
"text": "Directory traversal vulnerability in the save_config function in ntpd in ntp_control.c in NTP before 4.2.8p4, when used on systems that do not use \u0027\\\u0027 or \u0027/\u0027 characters for directory separation such as OpenVMS, allows remote authenticated users to overwrite arbitrary files.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7851"
},
{
"cve": "CVE-2015-7852",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "ntpq in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted mode 6 response packets.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.9,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.9,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7852"
},
{
"cve": "CVE-2015-7854",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"notes": [
{
"category": "description",
"text": "Buffer overflow in the password management functionality in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted key file.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7854"
},
{
"cve": "CVE-2015-7855",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "The decodenetnum function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (assertion failure) via a 6 or mode 7 packet containing a long data value.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7855"
},
{
"cve": "CVE-2015-7871",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"notes": [
{
"category": "description",
"text": "Crypto-NAK packets in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to bypass authentication.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.8,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.8,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7871"
},
{
"cve": "CVE-2015-7973",
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p6 and 4.3.x before 4.3.90, when configured in broadcast mode, allows man-in-the-middle attackers to conduct replay attacks by sniffing the network.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7973"
},
{
"cve": "CVE-2015-7974",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"notes": [
{
"category": "description",
"text": "NTP 4.x before 4.2.8p6 and 4.3.x before 4.3.90 do not verify peer associations of symmetric keys when authenticating packets, which might allow remote attackers to conduct impersonation attacks via an arbitrary trusted key, aka a \"skeleton key.\"",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.7,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"temporalScore": 7.7,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7974"
},
{
"cve": "CVE-2015-7975",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "description",
"text": "The nextvar function in NTP before 4.2.8p6 and 4.3.x before 4.3.90 does not properly validate the length of its input, which allows an attacker to cause a denial of service (application crash).",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.2,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 6.2,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7975"
},
{
"cve": "CVE-2015-7976",
"notes": [
{
"category": "description",
"text": "The ntpq saveconfig command in NTP 4.1.2, 4.2.x before 4.2.8p6, 4.3, 4.3.25, 4.3.70, and 4.3.77 does not properly filter special characters, which allows attackers to cause unspecified impact via a crafted filename.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 4.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 4.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7976"
},
{
"cve": "CVE-2015-7977",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "description",
"text": "ntpd in NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service (NULL pointer dereference) via a ntpdc reslist command.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.9,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.9,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7977"
},
{
"cve": "CVE-2015-7978",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p6 and 4.3.0 before 4.3.90 allows a remote attackers to cause a denial of service (stack exhaustion) via an ntpdc relist command, which triggers recursive traversal of the restriction list.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7978"
},
{
"cve": "CVE-2015-7979",
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service (client-server association tear down) by sending broadcast packets with invalid authentication to a broadcast client.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7979"
},
{
"cve": "CVE-2015-8138",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to bypass the origin timestamp validation via a packet with an origin timestamp set to zero.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-8138"
},
{
"cve": "CVE-2015-8139",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"notes": [
{
"category": "description",
"text": "ntpq in NTP before 4.2.8p7 allows remote attackers to obtain origin timestamps and then impersonate peers via unspecified vectors.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-8139"
},
{
"cve": "CVE-2015-8140",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"notes": [
{
"category": "description",
"text": "The ntpq protocol in NTP before 4.2.8p7 allows remote attackers to conduct replay attacks by sniffing the network.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 4.8,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 4.8,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-8140"
},
{
"cve": "CVE-2015-8158",
"notes": [
{
"category": "description",
"text": "The getresponse function in ntpq in NTP versions before 4.2.8p9 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service (infinite loop) via crafted packets with incorrect values.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.9,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.9,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-8158"
},
{
"cve": "CVE-2016-1547",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "An off-path attacker can cause a preemptible client association to be demobilized in NTP 4.2.8p4 and earlier and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 by sending a crypto NAK packet to a victim client with a spoofed source address of an existing associated peer. This is true even if authentication is enabled.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-1547"
},
{
"cve": "CVE-2016-1550",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "description",
"text": "An exploitable vulnerability exists in the message authentication functionality of libntp in ntp 4.2.8p4 and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92. An attacker can send a series of crafted messages to attempt to recover the message digest key.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-1550"
},
{
"cve": "CVE-2016-2517",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p7 and 4.3.x before 4.3.92 allows remote attackers to cause a denial of service (prevent subsequent authentication) by leveraging knowledge of the controlkey or requestkey and sending a crafted packet to ntpd, which changes the value of trustedkey, controlkey, or requestkey. NOTE: this vulnerability exists because of a CVE-2016-2516 regression.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-2517"
},
{
"cve": "CVE-2016-2518",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "description",
"text": "The MATCH_ASSOC function in NTP before version 4.2.8p9 and 4.3.x before 4.3.92 allows remote attackers to cause an out-of-bounds reference via an addpeer request with a large hmode value.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-2518"
},
{
"cve": "CVE-2016-4953",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"notes": [
{
"category": "description",
"text": "ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (ephemeral-association demobilization) by sending a spoofed crypto-NAK packet with incorrect authentication data at a certain time.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-4953"
},
{
"cve": "CVE-2016-4954",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "description",
"text": "The process_packet function in ntp_proto.c in ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (peer-variable modification) by sending spoofed packets from many source IP addresses in a certain scenario, as demonstrated by triggering an incorrect leap indication.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-4954"
},
{
"cve": "CVE-2016-4955",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "description",
"text": "ntpd in NTP 4.x before 4.2.8p8, when autokey is enabled, allows remote attackers to cause a denial of service (peer-variable clearing and association outage) by sending (1) a spoofed crypto-NAK packet or (2) a packet with an incorrect MAC value at a certain time.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.9,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.9,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-4955"
},
{
"cve": "CVE-2016-7427",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "description",
"text": "The broadcast mode replay prevention functionality in ntpd in NTP before 4.2.8p9 allows remote attackers to cause a denial of service (reject broadcast mode packets) via a crafted broadcast mode packet.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 4.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 4.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-7427"
},
{
"cve": "CVE-2016-7431",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p9 allows remote attackers to bypass the origin timestamp protection mechanism via an origin timestamp of zero. NOTE: this vulnerability exists because of a CVE-2015-8138 regression.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-7431"
},
{
"cve": "CVE-2016-7433",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p9 does not properly perform the initial sync calculations, which allows remote attackers to unspecified impact via unknown vectors, related to a \"root distance that did not include the peer dispersion.\"",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-7433"
},
{
"cve": "CVE-2016-7434",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "The read_mru_list function in NTP before 4.2.8p9 allows remote attackers to cause a denial of service (crash) via a crafted mrulist query.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-7434"
},
{
"cve": "CVE-2016-9310",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "description",
"text": "The control mode (mode 6) functionality in ntpd in NTP before 4.2.8p9 allows remote attackers to set or unset traps via a crafted control mode packet.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-9310"
},
{
"cve": "CVE-2016-9311",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "description",
"text": "ntpd in NTP before 4.2.8p9, when the trap service is enabled, allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted packet.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.9,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.9,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-9311"
},
{
"cve": "CVE-2017-6451",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "The mx4200_send function in the legacy MX4200 refclock in NTP before 4.2.8p10 and 4.3.x before 4.3.94 does not properly handle the return value of the snprintf function, which allows local users to execute arbitrary code via unspecified vectors, which trigger an out-of-bounds memory write.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 7.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 7.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2017-6451"
},
{
"cve": "CVE-2017-6458",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "description",
"text": "Multiple buffer overflows in the ctl_put* functions in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allow remote authenticated users to have unspecified impact via a long variable.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2017-6458"
},
{
"cve": "CVE-2017-6460",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "description",
"text": "Stack-based buffer overflow in the reslist function in ntpq in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote servers have unspecified impact via a long flagstr variable in a restriction list response.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 8.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2017-6460"
},
{
"cve": "CVE-2017-6462",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "description",
"text": "Buffer overflow in the legacy Datum Programmable Time Server (DPTS) refclock driver in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows local users to have unspecified impact via a crafted /dev/datum device.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 7.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 7.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2017-6462"
},
{
"cve": "CVE-2017-6463",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote authenticated users to cause a denial of service (daemon crash) via an invalid setting in a :config directive, related to the unpeer option.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2017-6463"
},
{
"cve": "CVE-2017-6464",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote attackers to cause a denial of service (ntpd crash) via a malformed mode configuration directive.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2017-6464"
},
{
"cve": "CVE-2018-12327",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "Stack-based buffer overflow in ntpq and ntpdc of NTP version 4.2.8p11 allows an attacker to achieve code execution or escalate to higher privileges via a long string as the argument for an IPv4 or IPv6 command-line parameter. NOTE: It is unclear whether there are any common situations in which ntpq or ntpdc is used with a command line from an untrusted source.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.8,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.8,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2018-12327"
},
{
"cve": "CVE-2018-7182",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "description",
"text": "The ctl_getitem method in ntpd in ntp-4.2.8p6 before 4.2.8p11 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mode 6 packet with a ntpd instance from 4.2.8p6 through 4.2.8p10.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2018-7182"
},
{
"cve": "CVE-2018-7183",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "description",
"text": "Buffer overflow in the decodearr function in ntpq in ntp 4.2.8p6 through 4.2.8p10 allows remote attackers to execute arbitrary code by leveraging an ntpq query and sending a response with a crafted array.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.8,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.8,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2018-7183"
},
{
"cve": "CVE-2018-7184",
"notes": [
{
"category": "description",
"text": "ntpd in ntp 4.2.8p4 before 4.2.8p11 drops bad packets before updating the \"received\" timestamp, which allows remote attackers to cause a denial of service (disruption) by sending a packet with a zero-origin timestamp causing the association to reset and setting the contents of the packet as the most recent timestamp. This issue is a result of an incomplete fix for CVE-2015-7704.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2018-7184"
},
{
"cve": "CVE-2018-7185",
"notes": [
{
"category": "description",
"text": "The protocol engine in ntp 4.2.6 before 4.2.8p11 allows a remote attackers to cause a denial of service (disruption) by continually sending a packet with a zero-origin timestamp and source IP address of the \"other side\" of an interleaved association causing the victim ntpd to reset its association.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2018-7185"
},
{
"cve": "CVE-2018-8956",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "ntpd in ntp 4.2.8p10, 4.2.8p11, 4.2.8p12 and 4.2.8p13 allow remote attackers to prevent a broadcast client from synchronizing its clock with a broadcast NTP server via soofed mode 3 and mode 5 packets. The attacker must either be a part of the same broadcast network or control a slave in that broadcast network that can capture certain required packets on the attacker\u0027s behalf and send them to the attacker.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2018-8956"
},
{
"cve": "CVE-2019-8936",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "description",
"text": "NTP through 4.2.8p12 has a NULL Pointer Dereference.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2019-8936"
},
{
"cve": "CVE-2020-11868",
"cwe": {
"id": "CWE-346",
"name": "Origin Validation Error"
},
"notes": [
{
"category": "description",
"text": "ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows an off-path attacker to block unauthenticated synchronization via a server mode packet with a spoofed source IP address, because transmissions are rescheduled even when a packet lacks a valid origin timestamp.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2020-11868"
},
{
"cve": "CVE-2020-13817",
"cwe": {
"id": "CWE-330",
"name": "Use of Insufficiently Random Values"
},
"notes": [
{
"category": "description",
"text": "ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows remote attackers to cause a denial of service (daemon exit or system time change) by predicting transmit timestamps for use in spoofed packets. The victim must be relying on unauthenticated IPv4 time sources. There must be an off-path attacker who can query time from the victim\u0027s ntpd instance.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.4,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.4,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2020-13817"
},
{
"cve": "CVE-2020-15025",
"cwe": {
"id": "CWE-401",
"name": "Missing Release of Memory after Effective Lifetime"
},
"notes": [
{
"category": "description",
"text": "ntpd in ntp 4.2.8 before 4.2.8p15 and 4.3.x before 4.3.101 allows remote attackers to cause a denial of service (memory consumption) by sending packets, because memory is not freed in situations where a CMAC key is used and associated with a CMAC algorithm in the ntp.keys file.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 4.9,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"temporalScore": 4.9,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2020-15025"
},
{
"cve": "CVE-2015-7701",
"cwe": {
"id": "CWE-772",
"name": "Missing Release of Resource after Effective Lifetime"
},
"notes": [
{
"category": "description",
"text": "Memory leak in the CRYPTO_ASSOC function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (memory consumption).",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7701"
},
{
"cve": "CVE-2015-5300",
"notes": [
{
"category": "description",
"text": "The panic_gate check in NTP before 4.2.8p5 is only re-enabled after the first change to the system clock that was greater than 128 milliseconds by default, which allows remote attackers to set NTP to an arbitrary time when started with the -g option, or to alter the time by up to 900 seconds otherwise by responding to an unspecified number of requests from trusted sources, and leveraging a resulting denial of service (abort and restart).",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-5300"
},
{
"cve": "CVE-2015-7853",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"notes": [
{
"category": "description",
"text": "The datalen parameter in the refclock driver in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a negative input value.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.8,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.8,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7853"
},
{
"cve": "CVE-2015-7705",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "The rate limiting feature in NTP 4.x before 4.2.8p4 and 4.3.x before 4.3.77 allows remote attackers to have unspecified impact via a large number of crafted requests.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.8,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.8,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7705"
},
{
"cve": "CVE-2015-7703",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "The \"pidfile\" or \"driftfile\" directives in NTP ntpd 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77, when ntpd is configured to allow remote configuration, allows remote attackers with an IP address that is allowed to send configuration requests, and with knowledge of the remote configuration password to write to arbitrary files via the :config command.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2015-7703"
},
{
"cve": "CVE-2016-7429",
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p9 changes the peer structure to the interface it receives the response from a source, which allows remote attackers to cause a denial of service (prevent communication with a source) by sending a response for a source to an interface the source does not use.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"environmentalScore": 3.7,
"environmentalSeverity": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 3.7,
"temporalSeverity": "LOW",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-7429"
},
{
"cve": "CVE-2016-7428",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "description",
"text": "ntpd in NTP before 4.2.8p9 allows remote attackers to cause a denial of service (reject broadcast mode packets) via the poll interval in a broadcast packet.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 4.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 4.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-7428"
},
{
"cve": "CVE-2016-7426",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p9 rate limits responses received from the configured sources when rate limiting for all associations is enabled, which allows remote attackers to cause a denial of service (prevent responses from the sources) by sending responses with a spoofed source address.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-7426"
},
{
"cve": "CVE-2016-4957",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "description",
"text": "ntpd in NTP before 4.2.8p8 allows remote attackers to cause a denial of service (daemon crash) via a crypto-NAK packet. NOTE: this vulnerability exists because of an incorrect fix for CVE-2016-1547.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-4957"
},
{
"cve": "CVE-2016-4956",
"notes": [
{
"category": "description",
"text": "ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (interleaved-mode transition and time change) via a spoofed broadcast packet. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-1548.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-4956"
},
{
"cve": "CVE-2016-2519",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "description",
"text": "ntpd in NTP before 4.2.8p7 and 4.3.x before 4.3.92 allows remote attackers to cause a denial of service (ntpd abort) by a large request data value, which triggers the ctl_getitem function to return a NULL value.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.9,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.9,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-2519"
},
{
"cve": "CVE-2016-2516",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "description",
"text": "NTP before 4.2.8p7 and 4.3.x before 4.3.92, when mode7 is enabled, allows remote attackers to cause a denial of service (ntpd abort) by using the same IP address multiple times in an unconfig directive.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-2516"
},
{
"cve": "CVE-2016-1551",
"notes": [
{
"category": "description",
"text": "ntpd in NTP 4.2.8p3 and NTPsec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 relies on the underlying operating system to protect it from requests that impersonate reference clocks. Because reference clocks are treated like other peers and stored in the same structure, any packet with a source ip address of a reference clock (127.127.1.1 for example) that reaches the receive() function will match that reference clock\u0027s peer record and will be treated as a trusted peer. Any system that lacks the typical martian packet filtering which would block these packets is in danger of having its time controlled by an attacker.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"environmentalScore": 3.7,
"environmentalSeverity": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 3.7,
"temporalSeverity": "LOW",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-1551"
},
{
"cve": "CVE-2016-1549",
"notes": [
{
"category": "description",
"text": "A malicious authenticated peer can create arbitrarily-many ephemeral associations in order to win the clock selection algorithm in ntpd in NTP 4.2.8p4 and earlier and NTPsec 3e160db8dc248a0bcb053b56a80167dc742d2b74 and a5fb34b9cc89b92a8fef2f459004865c93bb7f92 and modify a victim\u0027s clock.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-1549"
},
{
"cve": "CVE-2016-1548",
"notes": [
{
"category": "description",
"text": "An attacker can spoof a packet from a legitimate ntpd server with an origin timestamp that matches the peer-\u003edst timestamp recorded for that server. After making this switch, the client in NTP 4.2.8p4 and earlier and NTPSec aa48d001683e5b791a743ec9c575aaf7d867a2b0c will reject all future legitimate server responses. It is possible to force the victim client to move time after the mode has been changed. ntpq gives no indication that the mode has been switched.",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-52001"
],
"known_affected": [
"CSAFPID-51001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "1. If your SIMA2 does not need to provide time information to other systems or synchronize itself with an NTP server, disable the NTP client on those systems. Please note that the NTP client is disabled by default in SIMA2\n\n\n2. In case you must use the NTP server on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Allow NTP traffic to/from trusted NTP clients only\n\n- Monitor the network for malicious NTP traffic going to/coming from the SIMA2\n\n- Filter malicious NTP traffic going to/coming from the SIMA2 Monitor NTP server operations on your SIMA2 (server availability, correctness of advertised time, NTP-related log entries, etc.)\n\n\n3. In case you must use the NTP client on an SIMA2, choose from the following options to reduce NTP-based risks:\n\n- Use trusted NTP servers only\n\n- Allow NTP traffic to/from trusted NTP servers only\n\n- Monitor the network for malicious NTP traffic targeting the SIMA2\n\n- Filter malicious NTP traffic targeting the SIMA2\n\n- Monitor NTP client operations on your SIMA2 (correctness of system time, NTP-related log entries, etc.)",
"product_ids": [
"CSAFPID-51001"
]
},
{
"category": "vendor_fix",
"details": "Upgrade your\u00a0SIMA2 to software version 2.6 or above. The NTP service of the\u00a0SIMA2 Master Station with software version V2.6 and above includes a current, supported version of ntpd.",
"product_ids": [
"CSAFPID-51001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.2,
"environmentalSeverity": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"temporalScore": 7.2,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"CSAFPID-51001"
]
}
],
"title": "CVE-2016-1548"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…