OVMSA-2016-0082

OVMSA-2016-0082 - ntp security update

Type:SECURITY
Impact:MODERATE
Release Date:2016-05-31

Description


[4.2.6p5-10.el6_8.1]
- don't allow spoofed packets to demobilize associations (CVE-2015-7979,
CVE-2016-1547)
- don't allow spoofed packet to enable symmetric interleaved mode
(CVE-2016-1548)
- check mode of new source in config command (CVE-2016-2518)
- make MAC check resilient against timing attack (CVE-2016-1550)

[4.2.6p5-10]
- don't accept server/peer packets with zero origin timestamp (CVE-2015-8138)
- fix crash with reslist command (CVE-2015-7977, CVE-2015-7978)

[4.2.6p5-9]
- fix crash with invalid logconfig command (CVE-2015-5194)
- fix crash when referencing disabled statistic type (CVE-2015-5195)
- don't hang in sntp with crafted reply (CVE-2015-5219)
- don't crash with crafted autokey packet (CVE-2015-7691, CVE-2015-7692,
CVE-2015-7702)
- fix memory leak with autokey (CVE-2015-7701)
- don't allow setting driftfile and pidfile remotely (CVE-2015-7703)
- don't crash in ntpq with crafted packet (CVE-2015-7852)
- add option to set Differentiated Services Code Point (DSCP) (#1228314)
- extend rawstats log (#1242895)
- fix resetting of leap status (#1243034)
- report clock state changes related to leap seconds (#1242937)
- allow -4/-6 on restrict lines with mask (#1232146)
- retry joining multicast groups (#1288534)
- explain synchronised state in ntpstat man page (#1286969)

[4.2.6p5-7]
- check origin timestamp before accepting KoD RATE packet (CVE-2015-7704)
- allow only one step larger than panic threshold with -g (CVE-2015-5300)


Related CVEs


CVE-2016-1547
CVE-2016-1548
CVE-2016-2518
CVE-2015-7979
CVE-2016-1550

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle VM 3.3 (x86_64) ntp-4.2.6p5-10.el6.1.src.rpmc409c399b843077cef2a4add60101ba0e84512be9272e321799ba669ad8adcbbOVMSA-2018-0290ovm3_x86_64_3.3_patch
ntp-4.2.6p5-10.el6.1.x86_64.rpmd51e524e9a307d9d800e52467d52f637438c3cc99e2ed8ddbc7cc774854e1f4bOVMSA-2018-0290ovm3_x86_64_3.3_patch
ntpdate-4.2.6p5-10.el6.1.x86_64.rpmef34083a73fd5008e3ca1e96fbbdefe9a0b172a4443bbf5550eaf543fc2c46f4OVMSA-2018-0290ovm3_x86_64_3.3_patch
Oracle VM 3.4 (x86_64) ntp-4.2.6p5-10.el6.1.src.rpmc409c399b843077cef2a4add60101ba0e84512be9272e321799ba669ad8adcbbOVMSA-2018-0290ovm34_x86_64_latest
ntp-4.2.6p5-10.el6.1.x86_64.rpmd51e524e9a307d9d800e52467d52f637438c3cc99e2ed8ddbc7cc774854e1f4bOVMSA-2018-0290ovm34_x86_64_latest
ntpdate-4.2.6p5-10.el6.1.x86_64.rpmef34083a73fd5008e3ca1e96fbbdefe9a0b172a4443bbf5550eaf543fc2c46f4OVMSA-2018-0290ovm34_x86_64_latest



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete