Stay Connected:

ELSA-2016-0780

ELSA-2016-0780 - ntp security and bug fix update

Type:SECURITY
Impact:MODERATE
Release Date:2016-05-12

Description


[4.2.6p5-10]
- don't accept server/peer packets with zero origin timestamp (CVE-2015-8138)
- fix crash with reslist command (CVE-2015-7977, CVE-2015-7978)

[4.2.6p5-9]
- fix crash with invalid logconfig command (CVE-2015-5194)
- fix crash when referencing disabled statistic type (CVE-2015-5195)
- don't hang in sntp with crafted reply (CVE-2015-5219)
- don't crash with crafted autokey packet (CVE-2015-7691, CVE-2015-7692,
CVE-2015-7702)
- fix memory leak with autokey (CVE-2015-7701)
- don't allow setting driftfile and pidfile remotely (CVE-2015-7703)
- don't crash in ntpq with crafted packet (CVE-2015-7852)
- add option to set Differentiated Services Code Point (DSCP) (#1228314)
- extend rawstats log (#1242895)
- fix resetting of leap status (#1243034)
- report clock state changes related to leap seconds (#1242937)
- allow -4/-6 on restrict lines with mask (#1232146)
- retry joining multicast groups (#1288534)
- explain synchronised state in ntpstat man page (#1286969)

[4.2.6p5-7]
- check origin timestamp before accepting KoD RATE packet (CVE-2015-7704)
- allow only one step larger than panic threshold with -g (CVE-2015-5300)


Related CVEs


CVE-2015-5194
CVE-2015-7692
CVE-2015-5219
CVE-2015-7702
CVE-2015-5195
CVE-2015-7701
CVE-2015-7703
CVE-2015-7691
CVE-2015-7978
CVE-2015-7852
CVE-2015-7977

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 6 (i386) ntp-4.2.6p5-10.el6.src.rpm74728b052e02ccb09f77b857311ec35a5911ded6a7933e4ad77a386aa21f76c4ELSA-2018-3854ol6_i386_latest_archive
ntp-4.2.6p5-10.el6.src.rpm74728b052e02ccb09f77b857311ec35a5911ded6a7933e4ad77a386aa21f76c4ELSA-2018-3854ol6_u8_i386_base
ntp-4.2.6p5-10.el6.i686.rpm867c3c81c437cbc9961a3be42010349d0e5fdcc47d2495fb56faf600a4c9c75aELSA-2018-3854ol6_i386_latest_archive
ntp-4.2.6p5-10.el6.i686.rpm867c3c81c437cbc9961a3be42010349d0e5fdcc47d2495fb56faf600a4c9c75aELSA-2018-3854ol6_u8_i386_base
ntp-doc-4.2.6p5-10.el6.noarch.rpm0d27315f3969612b4b944bae8709824740d59fff2e68700c7cae992881acd6bcELSA-2018-3854ol6_i386_latest_archive
ntp-doc-4.2.6p5-10.el6.noarch.rpm0d27315f3969612b4b944bae8709824740d59fff2e68700c7cae992881acd6bcELSA-2018-3854ol6_u8_i386_base
ntp-perl-4.2.6p5-10.el6.i686.rpm87d1038af30b1096abebf3e4328549b5732ba2bc101088ad2e16dc6dcbf87481ELSA-2018-3854ol6_i386_latest_archive
ntp-perl-4.2.6p5-10.el6.i686.rpm87d1038af30b1096abebf3e4328549b5732ba2bc101088ad2e16dc6dcbf87481ELSA-2018-3854ol6_u8_i386_base
ntpdate-4.2.6p5-10.el6.i686.rpm75ae273d2a4f5c17546b6dd92ea83fc629e2139ad5edbecafd44c2bc0af9a708ELSA-2018-3854ol6_i386_latest_archive
ntpdate-4.2.6p5-10.el6.i686.rpm75ae273d2a4f5c17546b6dd92ea83fc629e2139ad5edbecafd44c2bc0af9a708ELSA-2018-3854ol6_u8_i386_base
Oracle Linux 6 (x86_64) ntp-4.2.6p5-10.el6.src.rpm74728b052e02ccb09f77b857311ec35a5911ded6a7933e4ad77a386aa21f76c4ELSA-2018-3854ol6_u8_x86_64_base
ntp-4.2.6p5-10.el6.src.rpm74728b052e02ccb09f77b857311ec35a5911ded6a7933e4ad77a386aa21f76c4ELSA-2018-3854ol6_x86_64_latest_archive
ntp-4.2.6p5-10.el6.x86_64.rpmc61938a4c6a74f94ec3fcb2c0398e565ed8f3dc66daecddd87e3b79b59e65c56ELSA-2018-3854ol6_u8_x86_64_base
ntp-4.2.6p5-10.el6.x86_64.rpmc61938a4c6a74f94ec3fcb2c0398e565ed8f3dc66daecddd87e3b79b59e65c56ELSA-2018-3854ol6_x86_64_latest_archive
ntp-doc-4.2.6p5-10.el6.noarch.rpm0d27315f3969612b4b944bae8709824740d59fff2e68700c7cae992881acd6bcELSA-2018-3854ol6_u8_x86_64_base
ntp-doc-4.2.6p5-10.el6.noarch.rpm0d27315f3969612b4b944bae8709824740d59fff2e68700c7cae992881acd6bcELSA-2018-3854ol6_x86_64_latest_archive
ntp-perl-4.2.6p5-10.el6.x86_64.rpmd0029b15cb692bf86e621416e00ebcf1a3bc7ad2de2f2a2dc549fe0c18d07209ELSA-2018-3854ol6_u8_x86_64_base
ntp-perl-4.2.6p5-10.el6.x86_64.rpmd0029b15cb692bf86e621416e00ebcf1a3bc7ad2de2f2a2dc549fe0c18d07209ELSA-2018-3854ol6_x86_64_latest_archive
ntpdate-4.2.6p5-10.el6.x86_64.rpm83e1cfb9584c9aeda129aaecec39caacff257d3ad782973877add617a497318fELSA-2018-3854ol6_u8_x86_64_base
ntpdate-4.2.6p5-10.el6.x86_64.rpm83e1cfb9584c9aeda129aaecec39caacff257d3ad782973877add617a497318fELSA-2018-3854ol6_x86_64_latest_archive



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights