Ubuntu Security Notice 3707-2 - USN-3707-1 and USN-3349-1 fixed several vulnerabilities in NTP. This update provides the corresponding update for Ubuntu 12.04 ESM. Miroslav Lichvar discovered that NTP incorrectly handled certain spoofed addresses when performing rate limiting. A remote attacker could possibly use this issue to perform a denial of service. Various other issues were also addressed.
491d58f999c7eea8810601c09831b240d9aedad6123ec22fdeec53a32edec41bUbuntu Security Notice 3707-1 - Yihan Lian discovered that NTP incorrectly handled certain malformed mode 6 packets. A remote attacker could possibly use this issue to cause ntpd to crash, resulting in a denial of service. This issue only affected Ubuntu 17.10 and Ubuntu 18.04 LTS. Michael Macnair discovered that NTP incorrectly handled certain responses. A remote attacker could possibly use this issue to execute arbitrary code. Various other issues were also addressed.
32ce831d1f1118924cb8bef066769217952aeaceb8886b1b83365b1d33fda1a3Gentoo Linux Security Advisory 201805-12 - Multiple vulnerabilities have been found in NTP, the worst of which could lead to remote code execution. Versions less than 4.2.8_p11 are affected.
818cfb09bc153d933a492ae7af6c8d103329d790eb73e41219b8664276dd14d4Slackware Security Advisory - New ntp packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues.
b9a66f00cb4f7f2a7bf96288fbec7cd2617bd1b5cb1219ca1456cb9b61cb915c
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed