ELSA-2016-0780
- ULN >
- Oracle Linux Errata repository >
- ELSA-2016-0780
ELSA-2016-0780 - ntp security and bug fix update
| Type: | SECURITY |
| Severity: | MODERATE |
| Release Date: | 2016-05-12 |
Description
[4.2.6p5-10]
- don't accept server/peer packets with zero origin timestamp (CVE-2015-8138)
- fix crash with reslist command (CVE-2015-7977, CVE-2015-7978)
[4.2.6p5-9]
- fix crash with invalid logconfig command (CVE-2015-5194)
- fix crash when referencing disabled statistic type (CVE-2015-5195)
- don't hang in sntp with crafted reply (CVE-2015-5219)
- don't crash with crafted autokey packet (CVE-2015-7691, CVE-2015-7692,
CVE-2015-7702)
- fix memory leak with autokey (CVE-2015-7701)
- don't allow setting driftfile and pidfile remotely (CVE-2015-7703)
- don't crash in ntpq with crafted packet (CVE-2015-7852)
- add option to set Differentiated Services Code Point (DSCP) (#1228314)
- extend rawstats log (#1242895)
- fix resetting of leap status (#1243034)
- report clock state changes related to leap seconds (#1242937)
- allow -4/-6 on restrict lines with mask (#1232146)
- retry joining multicast groups (#1288534)
- explain synchronised state in ntpstat man page (#1286969)
[4.2.6p5-7]
- check origin timestamp before accepting KoD RATE packet (CVE-2015-7704)
- allow only one step larger than panic threshold with -g (CVE-2015-5300)
Related CVEs
| CVE-2015-5195 |
| CVE-2015-7692 |
| CVE-2015-7701 |
| CVE-2015-7852 |
| CVE-2015-5194 |
| CVE-2015-5219 |
| CVE-2015-7691 |
| CVE-2015-7702 |
| CVE-2015-7703 |
| CVE-2015-7977 |
| CVE-2015-7978 |
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
| Oracle Linux 6 (i386) | ntp-4.2.6p5-10.el6.src.rpm | d5077110cdb589318e8b9f3accb25a97 | ELSA-2018-3854 |
| ntp-4.2.6p5-10.el6.i686.rpm | 39c3feea7b9ea3184a8a469f6246bb97 | ELSA-2018-3854 | |
| ntp-doc-4.2.6p5-10.el6.noarch.rpm | d208fa9dfa039ab60439ad31caa00eb4 | ELSA-2018-3854 | |
| ntp-perl-4.2.6p5-10.el6.i686.rpm | 56235705b274e9b09bd605d364fe663e | ELSA-2018-3854 | |
| ntpdate-4.2.6p5-10.el6.i686.rpm | f99f9d5771a93bff5e6e4886de3eadb3 | ELSA-2018-3854 | |
| Oracle Linux 6 (x86_64) | ntp-4.2.6p5-10.el6.src.rpm | d5077110cdb589318e8b9f3accb25a97 | ELSA-2018-3854 |
| ntp-4.2.6p5-10.el6.x86_64.rpm | 9ebedeb66a0b19d904d7c0e61e59e343 | ELSA-2018-3854 | |
| ntp-doc-4.2.6p5-10.el6.noarch.rpm | d208fa9dfa039ab60439ad31caa00eb4 | ELSA-2018-3854 | |
| ntp-perl-4.2.6p5-10.el6.x86_64.rpm | 5af56484b11569dd137062d2231d742e | ELSA-2018-3854 | |
| ntpdate-4.2.6p5-10.el6.x86_64.rpm | fa43527685233bc2224e605d2d55768c | ELSA-2018-3854 | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
