ELSA-2020-2663

ELSA-2020-2663 - ntp security update

Type:SECURITY
Severity:MODERATE
Release Date:2020-06-24

Description


[4.2.6p5-29.0.1]
- Bump release to avoid ULN conflict with Oracle modified errata.

[4.2.6p5-29.el7_8.2]
- don't update transmission time on invalid response (CVE-2020-11868)
- randomize transmit timestamp in client requests (CVE-?, #1813787)


Related CVEs


CVE-2020-11868
CVE-2020-13817

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (aarch64) ntp-4.2.6p5-29.0.1.el7_8.2.src.rpmee8da5641cb6f7404fde5c732bbcaf73-
ntp-4.2.6p5-29.0.1.el7_8.2.aarch64.rpm949f21c72390feacc866f147429e88f7-
ntp-doc-4.2.6p5-29.0.1.el7_8.2.noarch.rpm39bb9468c07b7cfe1f06bb0db1511a9e-
ntp-perl-4.2.6p5-29.0.1.el7_8.2.noarch.rpm705c4cd566a3b57165c939fdc594b1cf-
ntpdate-4.2.6p5-29.0.1.el7_8.2.aarch64.rpmc12913a6dd2b4121d7450cb8a73b6168-
sntp-4.2.6p5-29.0.1.el7_8.2.aarch64.rpm5611e5eddd406ac3b59b1991b7a2614a-
Oracle Linux 7 (x86_64) ntp-4.2.6p5-29.0.1.el7_8.2.src.rpmee8da5641cb6f7404fde5c732bbcaf73-
ntp-4.2.6p5-29.0.1.el7_8.2.x86_64.rpm15e5fbcbbd18746e9c6cd7c86300a2ad-
ntp-doc-4.2.6p5-29.0.1.el7_8.2.noarch.rpm39bb9468c07b7cfe1f06bb0db1511a9e-
ntp-perl-4.2.6p5-29.0.1.el7_8.2.noarch.rpm705c4cd566a3b57165c939fdc594b1cf-
ntpdate-4.2.6p5-29.0.1.el7_8.2.x86_64.rpme7877cdb333c7440dd03e97f31bc1d8f-
sntp-4.2.6p5-29.0.1.el7_8.2.x86_64.rpm6fcb88b1fb4123e10bfbdae568ab676a-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete