ID OPENVAS:136141256231063266 Type openvas Reporter Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com Modified 2018-04-06T00:00:00
Description
The remote host is missing an update to ntp
announced via advisory FEDORA-2009-0547.
# OpenVAS Vulnerability Test
# $Id: fcore_2009_0547.nasl 9350 2018-04-06 07:03:33Z cfischer $
# Description: Auto-generated from advisory FEDORA-2009-0547 (ntp)
#
# Authors:
# Thomas Reinke <reinke@securityspace.com>
#
# Copyright:
# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
# Text descriptions are largely excerpted from the referenced
# advisory, and are Copyright (c) the respective author(s)
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2,
# or at your option, GNU General Public License version 3,
# as published by the Free Software Foundation
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
#
include("revisions-lib.inc");
tag_insight = "Update Information:
This update fixes CVE-2009-0021: NTP 4.2.4 before 4.2.4p5 and 4.2.5 before
4.2.5p150 does not properly check the return value from the OpenSSL
EVP_VerifyFinal function, which allows remote attackers to bypass validation of
the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys,
a similar vulnerability to CVE-2008-5077.
ChangeLog:
* Mon Jan 12 2009 Miroslav Lichvar 4.2.4p6-1.fc9
- update to 4.2.4p6 (CVE-2009-0021)";
tag_solution = "Apply the appropriate updates.
This update can be installed with the yum update program. Use
su -c 'yum update ntp' at the command line.
For more information, refer to Managing Software with yum,
available at http://docs.fedoraproject.org/yum/.
https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-0547";
tag_summary = "The remote host is missing an update to ntp
announced via advisory FEDORA-2009-0547.";
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.63266");
script_version("$Revision: 9350 $");
script_tag(name:"last_modification", value:"$Date: 2018-04-06 09:03:33 +0200 (Fri, 06 Apr 2018) $");
script_tag(name:"creation_date", value:"2009-01-26 18:18:20 +0100 (Mon, 26 Jan 2009)");
script_cve_id("CVE-2009-0021", "CVE-2008-5077");
script_tag(name:"cvss_base", value:"5.8");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:N/I:P/A:P");
script_name("Fedora Core 9 FEDORA-2009-0547 (ntp)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
script_family("Fedora Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/fedora", "ssh/login/rpms");
script_tag(name : "insight" , value : tag_insight);
script_tag(name : "solution" , value : tag_solution);
script_tag(name : "summary" , value : tag_summary);
script_tag(name:"qod_type", value:"package");
script_tag(name:"solution_type", value:"VendorFix");
script_xref(name : "URL" , value : "https://bugzilla.redhat.com/show_bug.cgi?id=476807");
exit(0);
}
#
# The script code starts here
#
include("pkg-lib-rpm.inc");
res = "";
report = "";
if ((res = isrpmvuln(pkg:"ntp", rpm:"ntp~4.2.4p6~1.fc9", rls:"FC9")) != NULL) {
report += res;
}
if ((res = isrpmvuln(pkg:"ntp-perl", rpm:"ntp-perl~4.2.4p6~1.fc9", rls:"FC9")) != NULL) {
report += res;
}
if ((res = isrpmvuln(pkg:"ntpdate", rpm:"ntpdate~4.2.4p6~1.fc9", rls:"FC9")) != NULL) {
report += res;
}
if ((res = isrpmvuln(pkg:"ntp-debuginfo", rpm:"ntp-debuginfo~4.2.4p6~1.fc9", rls:"FC9")) != NULL) {
report += res;
}
if (report != "") {
security_message(data:report);
} else if (__pkg_match) {
exit(99); # Not vulnerable.
}
{"pluginID": "136141256231063266", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231063266", "history": [], "sourceData": "# OpenVAS Vulnerability Test\n# $Id: fcore_2009_0547.nasl 9350 2018-04-06 07:03:33Z cfischer $\n# Description: Auto-generated from advisory FEDORA-2009-0547 (ntp)\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Update Information:\n\nThis update fixes CVE-2009-0021: NTP 4.2.4 before 4.2.4p5 and 4.2.5 before\n4.2.5p150 does not properly check the return value from the OpenSSL\nEVP_VerifyFinal function, which allows remote attackers to bypass validation of\nthe certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys,\na similar vulnerability to CVE-2008-5077.\n\nChangeLog:\n\n* Mon Jan 12 2009 Miroslav Lichvar 4.2.4p6-1.fc9\n- update to 4.2.4p6 (CVE-2009-0021)\";\ntag_solution = \"Apply the appropriate updates.\n\nThis update can be installed with the yum update program. Use \nsu -c 'yum update ntp' at the command line.\nFor more information, refer to Managing Software with yum,\navailable at http://docs.fedoraproject.org/yum/.\n\nhttps://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-0547\";\ntag_summary = \"The remote host is missing an update to ntp\nannounced via advisory FEDORA-2009-0547.\";\n\n\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.63266\");\n script_version(\"$Revision: 9350 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:03:33 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2009-01-26 18:18:20 +0100 (Mon, 26 Jan 2009)\");\n script_cve_id(\"CVE-2009-0021\", \"CVE-2008-5077\");\n script_tag(name:\"cvss_base\", value:\"5.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:P/A:P\");\n script_name(\"Fedora Core 9 FEDORA-2009-0547 (ntp)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name : \"URL\" , value : \"https://bugzilla.redhat.com/show_bug.cgi?id=476807\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-rpm.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isrpmvuln(pkg:\"ntp\", rpm:\"ntp~4.2.4p6~1.fc9\", rls:\"FC9\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"ntp-perl\", rpm:\"ntp-perl~4.2.4p6~1.fc9\", rls:\"FC9\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"ntpdate\", rpm:\"ntpdate~4.2.4p6~1.fc9\", rls:\"FC9\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"ntp-debuginfo\", rpm:\"ntp-debuginfo~4.2.4p6~1.fc9\", rls:\"FC9\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "bulletinFamily": "scanner", "modified": "2018-04-06T00:00:00", "title": "Fedora Core 9 FEDORA-2009-0547 (ntp)", "cvss": {"vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/", "score": 5.8}, "cvelist": ["CVE-2009-0021", "CVE-2008-5077"], "description": "The remote host is missing an update to ntp\nannounced via advisory FEDORA-2009-0547.", "viewCount": 0, "published": "2009-01-26T00:00:00", "edition": 1, "hash": "f451262dfa249e2999f1266b16f03356ac66854f1b1eb6fcba5065eed9999654", "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cvelist", "hash": "36511265ac513475c9b4c9c510ee0c21"}, {"key": "cvss", "hash": "8a28889787508bab047d7fa94ce9a58c"}, {"key": "description", "hash": "45fd9ff519293e768b6fa331b3c0b4f8"}, {"key": "href", "hash": "262ea20d6add21f788858ab56a3a111a"}, {"key": "modified", "hash": "4fb7fd6149697e74d091717ea3f1ca84"}, {"key": "naslFamily", "hash": "be931514784f88df80712740ad2723e7"}, {"key": "pluginID", "hash": "875ebe9d25a5f9a2e1571ca175174676"}, {"key": "published", "hash": "5dddacd5c2ee0ff8d4a8455570820375"}, {"key": "references", "hash": "79c8ae8df914fa275e171f68a3726434"}, {"key": "reporter", "hash": "b778055b37159119ce97e96620d4ff56"}, {"key": "sourceData", "hash": "2d7e7381c2f483f95170dbdb7d149b11"}, {"key": "title", "hash": "102dcd483f5f74cf022a766dc20da4bf"}, {"key": "type", "hash": "47c1f692ea47a21f716dad07043ade01"}], "id": "OPENVAS:136141256231063266", "type": "openvas", "lastseen": "2018-04-06T11:37:38", "reporter": "Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com", "enchantments": {"score": {"value": 6.7, "vector": "NONE", "modified": "2018-04-06T11:37:38"}, "dependencies": {"references": [{"type": "f5", "idList": ["SOL9889", "SOL9762"]}, {"type": "cve", "idList": ["CVE-2008-5077", "CVE-2009-0021"]}, {"type": "openssl", "idList": ["OPENSSL:CVE-2008-5077"]}, {"type": "openvas", "idList": ["OPENVAS:63743", "OPENVAS:63267", "OPENVAS:63266", "OPENVAS:136141256231063230", "OPENVAS:63230", "OPENVAS:136141256231063743", "OPENVAS:136141256231063267", "OPENVAS:136141256231063281", "OPENVAS:65238", "OPENVAS:136141256231065238"]}, {"type": "slackware", "idList": ["SSA-2009-014-03", "SSA-2009-014-01"]}, {"type": "nessus", "idList": ["SLACKWARE_SSA_2009-014-03.NASL", "GENTOO_GLSA-200904-05.NASL", "ORACLEVM_OVMSA-2009-0011.NASL", "SUSE_XNTP-5936.NASL", "SUSE_XNTP-6072.NASL", "SL_20090129_NTP_ON_SL4_X.NASL", "SUSE9_12338.NASL", "SUSE_11_0_NTP-090119.NASL", "MANDRIVA_MDVSA-2009-007.NASL", "FEDORA_2009-0547.NASL"]}, {"type": "gentoo", "idList": ["GLSA-200904-05", "GLSA-200902-02"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:21113", "SECURITYVULNS:VULN:9564", "SECURITYVULNS:DOC:21114"]}, {"type": "ubuntu", "idList": ["USN-705-1", "USN-704-1"]}, {"type": "centos", "idList": ["CESA-2009:0046", "CESA-2009:0004-01"]}, {"type": "debian", "idList": ["DEBIAN:DSA-1702-1:D3B79", "DEBIAN:DSA-1701-1:B97E4"]}, {"type": "oraclelinux", "idList": ["ELSA-2009-0046", "ELSA-2009-0004"]}, {"type": "redhat", "idList": ["RHSA-2009:0046", "RHSA-2009:0004"]}, {"type": "suse", "idList": ["SUSE-SA:2009:006"]}], "modified": "2018-04-06T11:37:38"}, "vulnersScore": 6.7}, "objectVersion": "1.3", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=476807"], "naslFamily": "Fedora Local Security Checks"}
{"f5": [{"lastseen": "2016-09-26T17:23:26", "bulletinFamily": "software", "description": "**Description**\n\nNTP may not properly check the return value from the OpenSSL EVP_VerifyFinal function, which may allow a remote attacker to bypass validation of the certificate chain by way of a malformed SSL/TLS signature for DSA and ECDSA keys.\n\n**Note**: This is a similar vulnerability to CVE-2008-5077. For information about CVE-2008-5077, refer to SOL9762: OpenSSL vulnerability - CVE-2008-5077.\n\nInformation about this advisory is available at the following location:\n\n**Note**: This link takes you to a resource outside of AskF5, and it is possible that the information may be removed without our knowledge.\n\n<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0021>\n\nThe FirePass, BIG-IP, and WebAccelerator products listed use a vulnerable version of NTP; however, these products are not subject to this vulnerability because, by default, these products do not use DSA and ECDSA certificates and keys for NTP. \n\nF5 Product Development is tracking a change request to upgrade the NTP version used as CR115608 for FirePass and BIG-IP products.\n", "modified": "2013-03-25T00:00:00", "published": "2009-04-05T00:00:00", "href": "http://support.f5.com/kb/en-us/solutions/public/9000/800/sol9889.html", "id": "SOL9889", "title": "SOL9889 - NTP vulnerability CVE-2009-0021", "type": "f5", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2016-09-26T17:23:21", "bulletinFamily": "software", "description": "OpenSSL 0.9.8i and earlier versions do not properly check the return value from the **EVP_VerifyFinal **function.\n\nInformation about this advisory is available at the following locations:\n\n<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5077> \n \n<http://openssl.org/news/secadv_20090107.txt>\n\n**Note**: These links take you to a resource outside of AskF5, and it is possible that the information may be removed without our knowledge.\n\nF5 Product Development is tracking this issue as ID 294064 (formerly CR114792) to upgrade the version of OpenSSL used for the FirePass controller.\n\nThis is a similar vulnerability to CVE-2009-0025 and CVE-2009-0265. For information about CVE-2009-0025, refer to SOL9754: BIND 9 vulnerability CVE-2009-0025. For information about CVE-2009-0265, refer to SOL11503: BIND 9 vulnerability CVE-2009-0265.\n", "modified": "2014-05-29T00:00:00", "published": "2009-03-03T00:00:00", "href": "http://support.f5.com/kb/en-us/solutions/public/9000/700/sol9762.html", "id": "SOL9762", "title": "SOL9762 - OpenSSL vulnerability - CVE-2008-5077", "type": "f5", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "cve": [{"lastseen": "2019-05-29T18:09:29", "bulletinFamily": "NVD", "description": "OpenSSL 0.9.8i and earlier does not properly check the return value from the EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys.", "modified": "2018-10-11T20:53:00", "id": "CVE-2008-5077", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-5077", "published": "2009-01-07T17:30:00", "title": "CVE-2008-5077", "type": "cve", "cvss": {"score": 5.8, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:P"}}, {"lastseen": "2019-05-29T18:09:56", "bulletinFamily": "NVD", "description": "NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to CVE-2008-5077.\nNote that versions 4.2.5 before 4.2.5p150 are development versions and not production versions. Development versions are not included in the CPE configuration for CVEs.", "modified": "2018-10-11T20:58:00", "id": "CVE-2009-0021", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0021", "published": "2009-01-07T17:30:00", "title": "CVE-2009-0021", "type": "cve", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}], "openssl": [{"lastseen": "2016-09-26T17:22:35", "bulletinFamily": "software", "description": "The Google Security Team discovered several functions inside OpenSSL incorrectly checked the result after calling the EVP_VerifyFinal function, allowing a malformed signature to be treated as a good signature rather than as an error. This issue affected the signature checks on DSA and ECDSA keys used with SSL/TLS. One way to exploit this flaw would be for a remote attacker who is in control of a malicious server or who can use a 'man in the middle' attack to present a malformed SSL/TLS signature from a certificate chain to a vulnerable client, bypassing validation. Reported by google.", "modified": "2009-01-07T00:00:00", "published": "2009-01-07T00:00:00", "id": "OPENSSL:CVE-2008-5077", "href": "https://www.openssl.org/news/vulnerabilities.html", "type": "openssl", "title": "Vulnerability in OpenSSL (CVE-2008-5077)", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}], "openvas": [{"lastseen": "2018-04-06T11:39:07", "bulletinFamily": "scanner", "description": "The remote host is missing updates announced in\nadvisory GLSA 200904-05.", "modified": "2018-04-06T00:00:00", "published": "2009-04-06T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231063743", "id": "OPENVAS:136141256231063743", "type": "openvas", "title": "Gentoo Security Advisory GLSA 200904-05 (ntp)", "sourceData": "#\n# OpenVAS Vulnerability Test\n# $\n# Description: Auto generated from Gentoo's XML based advisory\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisories, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"An error in the OpenSSL certificate chain validation in ntp might allow for\nspoofing attacks.\";\ntag_solution = \"All ntp users should upgrade to the latest version:\n\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=net-misc/ntp-4.2.4_p6'\n\nhttp://www.securityspace.com/smysecure/catid.html?in=GLSA%20200904-05\nhttp://bugs.gentoo.org/show_bug.cgi?id=254098\nhttp://www.gentoo.org/security/en/glsa/glsa-200902-02.xml\";\ntag_summary = \"The remote host is missing updates announced in\nadvisory GLSA 200904-05.\";\n\n \n \n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.63743\");\n script_version(\"$Revision: 9350 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:03:33 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2009-04-06 20:58:11 +0200 (Mon, 06 Apr 2009)\");\n script_cve_id(\"CVE-2008-5077\", \"CVE-2009-0021\");\n script_tag(name:\"cvss_base\", value:\"5.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:P/A:P\");\n script_name(\"Gentoo Security Advisory GLSA 200904-05 (ntp)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Gentoo Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/gentoo\", \"ssh/login/pkg\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-gentoo.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = ispkgvuln(pkg:\"net-misc/ntp\", unaffected: make_list(\"ge 4.2.4_p6\"), vulnerable: make_list(\"lt 4.2.4_p6\"))) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-07-24T12:50:42", "bulletinFamily": "scanner", "description": "The remote host is missing an update as announced\nvia advisory SSA:2009-014-03.", "modified": "2017-07-07T00:00:00", "published": "2012-09-11T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=63230", "id": "OPENVAS:63230", "title": "Slackware Advisory SSA:2009-014-03 ntp", "type": "openvas", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: esoft_slk_ssa_2009_014_03.nasl 6598 2017-07-07 09:36:44Z cfischer $\n# Description: Auto-generated from the corresponding slackware advisory\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"New ntp packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2,\n11.0, 12.0, 12.1, 12.2, and -current to a fix security issue.\n\nMore details about this issue may be found here:\nhttps://lists.ntp.org/pipermail/announce/2009-January/000055.html\nhttp://www.ocert.org/advisories/ocert-2008-016.html\";\ntag_summary = \"The remote host is missing an update as announced\nvia advisory SSA:2009-014-03.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2009-014-03\";\n \nif(description)\n{\n script_id(63230);\n script_tag(name:\"creation_date\", value:\"2012-09-11 01:34:21 +0200 (Tue, 11 Sep 2012)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 11:36:44 +0200 (Fri, 07 Jul 2017) $\");\n script_cve_id(\"CVE-2009-0021\", \"CVE-2008-5077\");\n script_tag(name:\"cvss_base\", value:\"5.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:P/A:P\");\n script_version(\"$Revision: 6598 $\");\n name = \"Slackware Advisory SSA:2009-014-03 ntp \";\n script_name(name);\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Slackware Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/slackware_linux\", \"ssh/login/slackpack\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-slack.inc\");\nvuln = 0;\nif(isslkpkgvuln(pkg:\"ntp\", ver:\"4.2.4p6-i386-1_slack8.1\", rls:\"SLK8.1\")) {\n vuln = 1;\n}\nif(isslkpkgvuln(pkg:\"ntp\", ver:\"4.2.4p6-i386-1_slack9.0\", rls:\"SLK9.0\")) {\n vuln = 1;\n}\nif(isslkpkgvuln(pkg:\"ntp\", ver:\"4.2.4p6-i486-1_slack9.1\", rls:\"SLK9.1\")) {\n vuln = 1;\n}\nif(isslkpkgvuln(pkg:\"ntp\", ver:\"4.2.4p6-i486-1_slack10.0\", rls:\"SLK10.0\")) {\n vuln = 1;\n}\nif(isslkpkgvuln(pkg:\"ntp\", ver:\"4.2.4p6-i486-1_slack10.1\", rls:\"SLK10.1\")) {\n vuln = 1;\n}\nif(isslkpkgvuln(pkg:\"ntp\", ver:\"4.2.4p6-i486-1_slack10.2\", rls:\"SLK10.2\")) {\n vuln = 1;\n}\nif(isslkpkgvuln(pkg:\"ntp\", ver:\"4.2.4p6-i486-1_slack11.0\", rls:\"SLK11.0\")) {\n vuln = 1;\n}\nif(isslkpkgvuln(pkg:\"ntp\", ver:\"4.2.4p6-i486-1_slack12.0\", rls:\"SLK12.0\")) {\n vuln = 1;\n}\nif(isslkpkgvuln(pkg:\"ntp\", ver:\"4.2.4p6-i486-1_slack12.1\", rls:\"SLK12.1\")) {\n vuln = 1;\n}\nif(isslkpkgvuln(pkg:\"ntp\", ver:\"4.2.4p6-i486-1_slack12.2\", rls:\"SLK12.2\")) {\n vuln = 1;\n}\n\nif(vuln) {\n security_message(0);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-04-06T11:39:27", "bulletinFamily": "scanner", "description": "The remote host is missing an update to ntp\nannounced via advisory FEDORA-2009-0544.", "modified": "2018-04-06T00:00:00", "published": "2009-01-26T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231063267", "id": "OPENVAS:136141256231063267", "type": "openvas", "title": "Fedora Core 10 FEDORA-2009-0544 (ntp)", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: fcore_2009_0544.nasl 9350 2018-04-06 07:03:33Z cfischer $\n# Description: Auto-generated from advisory FEDORA-2009-0544 (ntp)\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Update Information:\n\nThis update fixes CVE-2009-0021: NTP 4.2.4 before 4.2.4p5 and 4.2.5 before\n4.2.5p150 does not properly check the return value from the OpenSSL\nEVP_VerifyFinal function, which allows remote attackers to bypass validation of\nthe certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys,\na similar vulnerability to CVE-2008-5077.\n\nChangeLog:\n\n* Mon Jan 12 2009 Miroslav Lichvar 4.2.4p6-1\n- update to 4.2.4p6 (CVE-2009-0021)\";\ntag_solution = \"Apply the appropriate updates.\n\nThis update can be installed with the yum update program. Use \nsu -c 'yum update ntp' at the command line.\nFor more information, refer to Managing Software with yum,\navailable at http://docs.fedoraproject.org/yum/.\n\nhttps://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-0544\";\ntag_summary = \"The remote host is missing an update to ntp\nannounced via advisory FEDORA-2009-0544.\";\n\n\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.63267\");\n script_version(\"$Revision: 9350 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:03:33 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2009-01-26 18:18:20 +0100 (Mon, 26 Jan 2009)\");\n script_cve_id(\"CVE-2009-0021\", \"CVE-2008-5077\");\n script_tag(name:\"cvss_base\", value:\"5.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:P/A:P\");\n script_name(\"Fedora Core 10 FEDORA-2009-0544 (ntp)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name : \"URL\" , value : \"https://bugzilla.redhat.com/show_bug.cgi?id=476807\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-rpm.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isrpmvuln(pkg:\"ntp\", rpm:\"ntp~4.2.4p6~1.fc10\", rls:\"FC10\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"ntp-perl\", rpm:\"ntp-perl~4.2.4p6~1.fc10\", rls:\"FC10\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"ntpdate\", rpm:\"ntpdate~4.2.4p6~1.fc10\", rls:\"FC10\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"ntp-debuginfo\", rpm:\"ntp-debuginfo~4.2.4p6~1.fc10\", rls:\"FC10\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-07-24T12:56:43", "bulletinFamily": "scanner", "description": "The remote host is missing updates announced in\nadvisory GLSA 200904-05.", "modified": "2017-07-07T00:00:00", "published": "2009-04-06T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=63743", "id": "OPENVAS:63743", "title": "Gentoo Security Advisory GLSA 200904-05 (ntp)", "type": "openvas", "sourceData": "#\n# OpenVAS Vulnerability Test\n# $\n# Description: Auto generated from Gentoo's XML based advisory\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisories, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"An error in the OpenSSL certificate chain validation in ntp might allow for\nspoofing attacks.\";\ntag_solution = \"All ntp users should upgrade to the latest version:\n\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=net-misc/ntp-4.2.4_p6'\n\nhttp://www.securityspace.com/smysecure/catid.html?in=GLSA%20200904-05\nhttp://bugs.gentoo.org/show_bug.cgi?id=254098\nhttp://www.gentoo.org/security/en/glsa/glsa-200902-02.xml\";\ntag_summary = \"The remote host is missing updates announced in\nadvisory GLSA 200904-05.\";\n\n \n \n\nif(description)\n{\n script_id(63743);\n script_version(\"$Revision: 6595 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 11:19:55 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2009-04-06 20:58:11 +0200 (Mon, 06 Apr 2009)\");\n script_cve_id(\"CVE-2008-5077\", \"CVE-2009-0021\");\n script_tag(name:\"cvss_base\", value:\"5.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:P/A:P\");\n script_name(\"Gentoo Security Advisory GLSA 200904-05 (ntp)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Gentoo Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/gentoo\", \"ssh/login/pkg\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-gentoo.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = ispkgvuln(pkg:\"net-misc/ntp\", unaffected: make_list(\"ge 4.2.4_p6\"), vulnerable: make_list(\"lt 4.2.4_p6\"))) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-07-25T10:56:48", "bulletinFamily": "scanner", "description": "The remote host is missing an update to ntp\nannounced via advisory FEDORA-2009-0544.", "modified": "2017-07-10T00:00:00", "published": "2009-01-26T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=63267", "id": "OPENVAS:63267", "title": "Fedora Core 10 FEDORA-2009-0544 (ntp)", "type": "openvas", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: fcore_2009_0544.nasl 6624 2017-07-10 06:11:55Z cfischer $\n# Description: Auto-generated from advisory FEDORA-2009-0544 (ntp)\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Update Information:\n\nThis update fixes CVE-2009-0021: NTP 4.2.4 before 4.2.4p5 and 4.2.5 before\n4.2.5p150 does not properly check the return value from the OpenSSL\nEVP_VerifyFinal function, which allows remote attackers to bypass validation of\nthe certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys,\na similar vulnerability to CVE-2008-5077.\n\nChangeLog:\n\n* Mon Jan 12 2009 Miroslav Lichvar 4.2.4p6-1\n- update to 4.2.4p6 (CVE-2009-0021)\";\ntag_solution = \"Apply the appropriate updates.\n\nThis update can be installed with the yum update program. Use \nsu -c 'yum update ntp' at the command line.\nFor more information, refer to Managing Software with yum,\navailable at http://docs.fedoraproject.org/yum/.\n\nhttps://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-0544\";\ntag_summary = \"The remote host is missing an update to ntp\nannounced via advisory FEDORA-2009-0544.\";\n\n\n\nif(description)\n{\n script_id(63267);\n script_version(\"$Revision: 6624 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:11:55 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2009-01-26 18:18:20 +0100 (Mon, 26 Jan 2009)\");\n script_cve_id(\"CVE-2009-0021\", \"CVE-2008-5077\");\n script_tag(name:\"cvss_base\", value:\"5.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:P/A:P\");\n script_name(\"Fedora Core 10 FEDORA-2009-0544 (ntp)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name : \"URL\" , value : \"https://bugzilla.redhat.com/show_bug.cgi?id=476807\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-rpm.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isrpmvuln(pkg:\"ntp\", rpm:\"ntp~4.2.4p6~1.fc10\", rls:\"FC10\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"ntp-perl\", rpm:\"ntp-perl~4.2.4p6~1.fc10\", rls:\"FC10\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"ntpdate\", rpm:\"ntpdate~4.2.4p6~1.fc10\", rls:\"FC10\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"ntp-debuginfo\", rpm:\"ntp-debuginfo~4.2.4p6~1.fc10\", rls:\"FC10\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-07-25T10:56:11", "bulletinFamily": "scanner", "description": "The remote host is missing an update to ntp\nannounced via advisory FEDORA-2009-0547.", "modified": "2017-07-10T00:00:00", "published": "2009-01-26T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=63266", "id": "OPENVAS:63266", "title": "Fedora Core 9 FEDORA-2009-0547 (ntp)", "type": "openvas", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: fcore_2009_0547.nasl 6624 2017-07-10 06:11:55Z cfischer $\n# Description: Auto-generated from advisory FEDORA-2009-0547 (ntp)\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Update Information:\n\nThis update fixes CVE-2009-0021: NTP 4.2.4 before 4.2.4p5 and 4.2.5 before\n4.2.5p150 does not properly check the return value from the OpenSSL\nEVP_VerifyFinal function, which allows remote attackers to bypass validation of\nthe certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys,\na similar vulnerability to CVE-2008-5077.\n\nChangeLog:\n\n* Mon Jan 12 2009 Miroslav Lichvar 4.2.4p6-1.fc9\n- update to 4.2.4p6 (CVE-2009-0021)\";\ntag_solution = \"Apply the appropriate updates.\n\nThis update can be installed with the yum update program. Use \nsu -c 'yum update ntp' at the command line.\nFor more information, refer to Managing Software with yum,\navailable at http://docs.fedoraproject.org/yum/.\n\nhttps://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-0547\";\ntag_summary = \"The remote host is missing an update to ntp\nannounced via advisory FEDORA-2009-0547.\";\n\n\n\nif(description)\n{\n script_id(63266);\n script_version(\"$Revision: 6624 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:11:55 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2009-01-26 18:18:20 +0100 (Mon, 26 Jan 2009)\");\n script_cve_id(\"CVE-2009-0021\", \"CVE-2008-5077\");\n script_tag(name:\"cvss_base\", value:\"5.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:P/A:P\");\n script_name(\"Fedora Core 9 FEDORA-2009-0547 (ntp)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name : \"URL\" , value : \"https://bugzilla.redhat.com/show_bug.cgi?id=476807\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-rpm.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isrpmvuln(pkg:\"ntp\", rpm:\"ntp~4.2.4p6~1.fc9\", rls:\"FC9\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"ntp-perl\", rpm:\"ntp-perl~4.2.4p6~1.fc9\", rls:\"FC9\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"ntpdate\", rpm:\"ntpdate~4.2.4p6~1.fc9\", rls:\"FC9\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"ntp-debuginfo\", rpm:\"ntp-debuginfo~4.2.4p6~1.fc9\", rls:\"FC9\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-05-29T18:38:57", "bulletinFamily": "scanner", "description": "The remote host is missing an update as announced\nvia advisory SSA:2009-014-03.", "modified": "2019-03-15T00:00:00", "published": "2012-09-11T00:00:00", "id": "OPENVAS:136141256231063230", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231063230", "title": "Slackware Advisory SSA:2009-014-03 ntp", "type": "openvas", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: esoft_slk_ssa_2009_014_03.nasl 14202 2019-03-15 09:16:15Z cfischer $\n# Description: Auto-generated from the corresponding slackware advisory\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.63230\");\n script_tag(name:\"creation_date\", value:\"2012-09-11 01:34:21 +0200 (Tue, 11 Sep 2012)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 10:16:15 +0100 (Fri, 15 Mar 2019) $\");\n script_cve_id(\"CVE-2009-0021\", \"CVE-2008-5077\");\n script_tag(name:\"cvss_base\", value:\"5.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:P/A:P\");\n script_version(\"$Revision: 14202 $\");\n script_name(\"Slackware Advisory SSA:2009-014-03 ntp\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Slackware Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/slackware_linux\", \"ssh/login/slackpack\", re:\"ssh/login/release=SLK(8\\.1|9\\.0|9\\.1|10\\.0|10\\.1|10\\.2|11\\.0|12\\.0|12\\.1|12\\.2)\");\n\n script_xref(name:\"URL\", value:\"https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2009-014-03\");\n\n script_tag(name:\"insight\", value:\"New ntp packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2,\n11.0, 12.0, 12.1, 12.2, and -current to a fix security issue.\n\nMore details about this issue is linked in the references.\");\n\n script_xref(name:\"URL\", value:\"https://lists.ntp.org/pipermail/announce/2009-January/000055.html\");\n script_xref(name:\"URL\", value:\"http://www.ocert.org/advisories/ocert-2008-016.html\");\n\n script_tag(name:\"solution\", value:\"Upgrade to the new package(s).\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update as announced\nvia advisory SSA:2009-014-03.\");\n\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-slack.inc\");\n\nreport = \"\";\nres = \"\";\n\nif((res = isslkpkgvuln(pkg:\"ntp\", ver:\"4.2.4p6-i386-1_slack8.1\", rls:\"SLK8.1\")) != NULL) {\n report += res;\n}\nif((res = isslkpkgvuln(pkg:\"ntp\", ver:\"4.2.4p6-i386-1_slack9.0\", rls:\"SLK9.0\")) != NULL) {\n report += res;\n}\nif((res = isslkpkgvuln(pkg:\"ntp\", ver:\"4.2.4p6-i486-1_slack9.1\", rls:\"SLK9.1\")) != NULL) {\n report += res;\n}\nif((res = isslkpkgvuln(pkg:\"ntp\", ver:\"4.2.4p6-i486-1_slack10.0\", rls:\"SLK10.0\")) != NULL) {\n report += res;\n}\nif((res = isslkpkgvuln(pkg:\"ntp\", ver:\"4.2.4p6-i486-1_slack10.1\", rls:\"SLK10.1\")) != NULL) {\n report += res;\n}\nif((res = isslkpkgvuln(pkg:\"ntp\", ver:\"4.2.4p6-i486-1_slack10.2\", rls:\"SLK10.2\")) != NULL) {\n report += res;\n}\nif((res = isslkpkgvuln(pkg:\"ntp\", ver:\"4.2.4p6-i486-1_slack11.0\", rls:\"SLK11.0\")) != NULL) {\n report += res;\n}\nif((res = isslkpkgvuln(pkg:\"ntp\", ver:\"4.2.4p6-i486-1_slack12.0\", rls:\"SLK12.0\")) != NULL) {\n report += res;\n}\nif((res = isslkpkgvuln(pkg:\"ntp\", ver:\"4.2.4p6-i486-1_slack12.1\", rls:\"SLK12.1\")) != NULL) {\n report += res;\n}\nif((res = isslkpkgvuln(pkg:\"ntp\", ver:\"4.2.4p6-i486-1_slack12.2\", rls:\"SLK12.2\")) != NULL) {\n report += res;\n}\n\nif(report != \"\") {\n security_message(data:report);\n} else if(__pkg_match) {\n exit(99);\n}", "cvss": {"score": 5.8, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:P"}}, {"lastseen": "2017-07-24T12:56:44", "bulletinFamily": "scanner", "description": "The remote host is missing an update to ntp\nannounced via advisory DSA 1702-1.", "modified": "2017-07-07T00:00:00", "published": "2009-01-13T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=63149", "id": "OPENVAS:63149", "title": "Debian Security Advisory DSA 1702-1 (ntp)", "type": "openvas", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_1702_1.nasl 6615 2017-07-07 12:09:52Z cfischer $\n# Description: Auto-generated from advisory DSA 1702-1 (ntp)\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"It has been discovered that NTP, an implementation of the Network Time\nProtocol, does not properly check the result of an OpenSSL function\nfor verifying cryptographic signatures, which may ultimately lead to\nthe acceptance of unauthenticated time information. (Note that\ncryptographic authentication of time servers is often not enabled in\nthe first place.)\n\nFor the stable distribution (etch), this problem has been fixed in\nversion 4.2.2.p4+dfsg-2etch1.\n\nFor the unstable distribution (sid), this problem has been fixed in\nversion 4.2.4p4+dfsg-8.\n\nThe testing distribution (lenny) will be fixed soon.\n\nWe recommend that you upgrade your ntp package.\";\ntag_summary = \"The remote host is missing an update to ntp\nannounced via advisory DSA 1702-1.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201702-1\";\n\n\nif(description)\n{\n script_id(63149);\n script_version(\"$Revision: 6615 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 14:09:52 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2009-01-13 22:38:32 +0100 (Tue, 13 Jan 2009)\");\n script_cve_id(\"CVE-2009-0021\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_name(\"Debian Security Advisory DSA 1702-1 (ntp)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"ntp-doc\", ver:\"4.2.2.p4+dfsg-2etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"ntp-simple\", ver:\"4.2.2.p4+dfsg-2etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"ntp-refclock\", ver:\"4.2.2.p4+dfsg-2etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"ntpdate\", ver:\"4.2.2.p4+dfsg-2etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"ntp\", ver:\"4.2.2.p4+dfsg-2etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-04-06T11:39:11", "bulletinFamily": "scanner", "description": "The remote host is missing an update to ntp\nannounced via advisory DSA 1702-1.", "modified": "2018-04-06T00:00:00", "published": "2009-01-13T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231063149", "id": "OPENVAS:136141256231063149", "type": "openvas", "title": "Debian Security Advisory DSA 1702-1 (ntp)", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_1702_1.nasl 9350 2018-04-06 07:03:33Z cfischer $\n# Description: Auto-generated from advisory DSA 1702-1 (ntp)\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"It has been discovered that NTP, an implementation of the Network Time\nProtocol, does not properly check the result of an OpenSSL function\nfor verifying cryptographic signatures, which may ultimately lead to\nthe acceptance of unauthenticated time information. (Note that\ncryptographic authentication of time servers is often not enabled in\nthe first place.)\n\nFor the stable distribution (etch), this problem has been fixed in\nversion 4.2.2.p4+dfsg-2etch1.\n\nFor the unstable distribution (sid), this problem has been fixed in\nversion 4.2.4p4+dfsg-8.\n\nThe testing distribution (lenny) will be fixed soon.\n\nWe recommend that you upgrade your ntp package.\";\ntag_summary = \"The remote host is missing an update to ntp\nannounced via advisory DSA 1702-1.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201702-1\";\n\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.63149\");\n script_version(\"$Revision: 9350 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:03:33 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2009-01-13 22:38:32 +0100 (Tue, 13 Jan 2009)\");\n script_cve_id(\"CVE-2009-0021\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_name(\"Debian Security Advisory DSA 1702-1 (ntp)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"ntp-doc\", ver:\"4.2.2.p4+dfsg-2etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"ntp-simple\", ver:\"4.2.2.p4+dfsg-2etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"ntp-refclock\", ver:\"4.2.2.p4+dfsg-2etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"ntpdate\", ver:\"4.2.2.p4+dfsg-2etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"ntp\", ver:\"4.2.2.p4+dfsg-2etch1\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2017-07-26T08:55:53", "bulletinFamily": "scanner", "description": "The remote host is missing updates to packages that affect\nthe security of your system. One or more of the following packages\nare affected:\n\n xntp\n xntp-doc\n\nFor more information, please visit the referenced security\nadvisories.\n\nMore details may also be found by searching for keyword\n5043260 within the SuSE Enterprise Server 9 patch\ndatabase at http://download.novell.com/patch/finder/", "modified": "2017-07-11T00:00:00", "published": "2009-10-10T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=65238", "id": "OPENVAS:65238", "title": "SLES9: Security update for xntp, xntp-doc", "type": "openvas", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: sles9p5043260.nasl 6666 2017-07-11 13:13:36Z cfischer $\n# Description: Security update for xntp, xntp-doc\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_summary = \"The remote host is missing updates to packages that affect\nthe security of your system. One or more of the following packages\nare affected:\n\n xntp\n xntp-doc\n\nFor more information, please visit the referenced security\nadvisories.\n\nMore details may also be found by searching for keyword\n5043260 within the SuSE Enterprise Server 9 patch\ndatabase at http://download.novell.com/patch/finder/\";\n\ntag_solution = \"Please install the updates provided by SuSE.\";\n \nif(description)\n{\n script_id(65238);\n script_version(\"$Revision: 6666 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-11 15:13:36 +0200 (Tue, 11 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2009-10-10 16:11:46 +0200 (Sat, 10 Oct 2009)\");\n script_cve_id(\"CVE-2009-0021\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_name(\"SLES9: Security update for xntp, xntp-doc\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse_sles\", \"ssh/login/rpms\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-rpm.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isrpmvuln(pkg:\"xntp\", rpm:\"xntp~4.2.0a~23.17\", rls:\"SLES9.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}], "nessus": [{"lastseen": "2019-02-21T01:11:34", "bulletinFamily": "scanner", "description": "The remote host is affected by the vulnerability described in GLSA-200904-05 (ntp: Certificate validation error)\n\n It has been reported that ntp incorrectly checks the return value of the EVP_VerifyFinal(), a vulnerability related to CVE-2008-5077 (GLSA 200902-02).\n Impact :\n\n A remote attacker could exploit this vulnerability to spoof arbitrary names to conduct Man-In-The-Middle attacks and intercept sensitive information.\n Workaround :\n\n There is no known workaround at this time.", "modified": "2018-11-14T00:00:00", "id": "GENTOO_GLSA-200904-05.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=36093", "published": "2009-04-07T00:00:00", "title": "GLSA-200904-05 : ntp: Certificate validation error", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Gentoo Linux Security Advisory GLSA 200904-05.\n#\n# The advisory text is Copyright (C) 2001-2018 Gentoo Foundation, Inc.\n# and licensed under the Creative Commons - Attribution / Share Alike \n# license. See http://creativecommons.org/licenses/by-sa/3.0/\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(36093);\n script_version(\"1.20\");\n script_cvs_date(\"Date: 2018/11/14 14:36:22\");\n\n script_cve_id(\"CVE-2008-5077\", \"CVE-2009-0021\");\n script_bugtraq_id(33150);\n script_xref(name:\"GLSA\", value:\"200904-05\");\n\n script_name(english:\"GLSA-200904-05 : ntp: Certificate validation error\");\n script_summary(english:\"Checks for updated package(s) in /var/db/pkg\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Gentoo host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote host is affected by the vulnerability described in GLSA-200904-05\n(ntp: Certificate validation error)\n\n It has been reported that ntp incorrectly checks the return value of\n the EVP_VerifyFinal(), a vulnerability related to CVE-2008-5077 (GLSA\n 200902-02).\n \nImpact :\n\n A remote attacker could exploit this vulnerability to spoof arbitrary\n names to conduct Man-In-The-Middle attacks and intercept sensitive\n information.\n \nWorkaround :\n\n There is no known workaround at this time.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security.gentoo.org/glsa/200902-02\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security.gentoo.org/glsa/200904-05\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"All ntp users should upgrade to the latest version:\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=net-misc/ntp-4.2.4_p6'\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(20, 287);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:ntp\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:gentoo:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2009/04/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/04/07\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Gentoo Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Gentoo/release\", \"Host/Gentoo/qpkg-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"qpkg.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Gentoo/release\")) audit(AUDIT_OS_NOT, \"Gentoo\");\nif (!get_kb_item(\"Host/Gentoo/qpkg-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (qpkg_check(package:\"net-misc/ntp\", unaffected:make_list(\"ge 4.2.4_p6\"), vulnerable:make_list(\"lt 4.2.4_p6\"))) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:qpkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = qpkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ntp\");\n}\n", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-02-21T01:11:27", "bulletinFamily": "scanner", "description": "New ntp packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, 12.2, and -current to a fix security issue.", "modified": "2018-12-18T00:00:00", "id": "SLACKWARE_SSA_2009-014-03.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=35377", "published": "2009-01-15T00:00:00", "title": "Slackware 10.0 / 10.1 / 10.2 / 11.0 / 12.0 / 12.1 / 12.2 / 8.1 / 9.0 / 9.1 / current : ntp (SSA:2009-014-03)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Slackware Security Advisory 2009-014-03. The text \n# itself is copyright (C) Slackware Linux, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(35377);\n script_version(\"1.16\");\n script_cvs_date(\"Date: 2018/12/18 10:18:59\");\n\n script_cve_id(\"CVE-2008-5077\", \"CVE-2009-0021\");\n script_xref(name:\"SSA\", value:\"2009-014-03\");\n\n script_name(english:\"Slackware 10.0 / 10.1 / 10.2 / 11.0 / 12.0 / 12.1 / 12.2 / 8.1 / 9.0 / 9.1 / current : ntp (SSA:2009-014-03)\");\n script_summary(english:\"Checks for updated package in /var/log/packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Slackware host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New ntp packages are available for Slackware 8.1, 9.0, 9.1, 10.0,\n10.1, 10.2, 11.0, 12.0, 12.1, 12.2, and -current to a fix security\nissue.\"\n );\n # http://www.ocert.org/advisories/ocert-2008-016.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://ocert.org/advisories/ocert-2008-016.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.ntp.org/pipermail/announce/2009-January/000055.html\"\n );\n # http://www.slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.531177\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?2a0a1047\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected ntp package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:P\");\n script_cwe_id(20, 287);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:slackware:slackware_linux:ntp\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:10.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:10.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:10.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:11.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:12.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:12.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:12.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:8.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:9.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:9.1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2009/01/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/01/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Slackware Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Slackware/release\", \"Host/Slackware/packages\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"slackware.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Slackware/release\")) audit(AUDIT_OS_NOT, \"Slackware\");\nif (!get_kb_item(\"Host/Slackware/packages\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Slackware\", cpu);\n\n\nflag = 0;\nif (slackware_check(osver:\"8.1\", pkgname:\"ntp\", pkgver:\"4.2.4p6\", pkgarch:\"i386\", pkgnum:\"1_slack8.1\")) flag++;\n\nif (slackware_check(osver:\"9.0\", pkgname:\"ntp\", pkgver:\"4.2.4p6\", pkgarch:\"i386\", pkgnum:\"1_slack9.0\")) flag++;\n\nif (slackware_check(osver:\"9.1\", pkgname:\"ntp\", pkgver:\"4.2.4p6\", pkgarch:\"i486\", pkgnum:\"1_slack9.1\")) flag++;\n\nif (slackware_check(osver:\"10.0\", pkgname:\"ntp\", pkgver:\"4.2.4p6\", pkgarch:\"i486\", pkgnum:\"1_slack10.0\")) flag++;\n\nif (slackware_check(osver:\"10.1\", pkgname:\"ntp\", pkgver:\"4.2.4p6\", pkgarch:\"i486\", pkgnum:\"1_slack10.1\")) flag++;\n\nif (slackware_check(osver:\"10.2\", pkgname:\"ntp\", pkgver:\"4.2.4p6\", pkgarch:\"i486\", pkgnum:\"1_slack10.2\")) flag++;\n\nif (slackware_check(osver:\"11.0\", pkgname:\"ntp\", pkgver:\"4.2.4p6\", pkgarch:\"i486\", pkgnum:\"1_slack11.0\")) flag++;\n\nif (slackware_check(osver:\"12.0\", pkgname:\"ntp\", pkgver:\"4.2.4p6\", pkgarch:\"i486\", pkgnum:\"1_slack12.0\")) flag++;\n\nif (slackware_check(osver:\"12.1\", pkgname:\"ntp\", pkgver:\"4.2.4p6\", pkgarch:\"i486\", pkgnum:\"1_slack12.1\")) flag++;\n\nif (slackware_check(osver:\"12.2\", pkgname:\"ntp\", pkgver:\"4.2.4p6\", pkgarch:\"i486\", pkgnum:\"1_slack12.2\")) flag++;\n\nif (slackware_check(osver:\"current\", pkgname:\"ntp\", pkgver:\"4.2.4p6\", pkgarch:\"i486\", pkgnum:\"1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:slackware_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-02-21T01:22:52", "bulletinFamily": "scanner", "description": "The remote OracleVM system is missing necessary patches to address critical security updates :\n\nCVE-2009-0159 Stack-based buffer overflow in the cookedprint function in ntpq/ntpq.c in ntpq in NTP before 4.2.4p7-RC2 allows remote NTP servers to execute arbitrary code via a crafted response.\n\nCVE-2009-1252 Stack-based buffer overflow in the crypto_recv function in ntp_crypto.c in ntpd in NTP before 4.2.4p7 and 4.2.5 before 4.2.5p74, when OpenSSL and autokey are enabled, allows remote attackers to execute arbitrary code via a crafted packet containing an extension field.\n\nCVE-2009-0021 NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to CVE-2008-5077.\n\n - fix buffer overflow when parsing Autokey association message (#500783, CVE-2009-1252)\n\n - fix buffer overflow in ntpq (#500783, CVE-2009-0159)\n\n - fix check for malformed signatures (#479698, CVE-2009-0021)\n\n - fix selecting multicast interface (#444106)\n\n - disable kernel discipline when -x option is used (#431729)\n\n - avoid use of uninitialized floating-point values in clock_select (#250838)\n\n - generate man pages from html source, include config man pages (#307271)\n\n - add note about paths and exit codes to ntpd man page (#242925, #246568)\n\n - add section about exit codes to ntpd man page (#319591)\n\n - always return 0 in scriptlets\n\n - pass additional options to ntpdate (#240141)\n\n - fix broadcast client to accept broadcasts on 255.255.255.255 (#226958)\n\n - compile with crypto support on 64bit architectures (#239580)\n\n - add ncurses-devel to buildrequires (#239580)\n\n - exit with nonzero code if ntpd -q did not set clock (#240134)\n\n - fix return codes in init script (#240118)", "modified": "2018-07-24T00:00:00", "id": "ORACLEVM_OVMSA-2009-0011.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=79458", "published": "2014-11-26T00:00:00", "title": "OracleVM 2.1 : ntp (OVMSA-2009-0011)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The package checks in this plugin were extracted from OracleVM\n# Security Advisory OVMSA-2009-0011.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(79458);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2018/07/24 18:56:11\");\n\n script_cve_id(\"CVE-2008-5077\", \"CVE-2009-0021\", \"CVE-2009-0159\", \"CVE-2009-1252\");\n script_bugtraq_id(33150, 34481, 35017);\n\n script_name(english:\"OracleVM 2.1 : ntp (OVMSA-2009-0011)\");\n script_summary(english:\"Checks the RPM output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote OracleVM host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote OracleVM system is missing necessary patches to address\ncritical security updates :\n\nCVE-2009-0159 Stack-based buffer overflow in the cookedprint function\nin ntpq/ntpq.c in ntpq in NTP before 4.2.4p7-RC2 allows remote NTP\nservers to execute arbitrary code via a crafted response.\n\nCVE-2009-1252 Stack-based buffer overflow in the crypto_recv function\nin ntp_crypto.c in ntpd in NTP before 4.2.4p7 and 4.2.5 before\n4.2.5p74, when OpenSSL and autokey are enabled, allows remote\nattackers to execute arbitrary code via a crafted packet containing an\nextension field.\n\nCVE-2009-0021 NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does\nnot properly check the return value from the OpenSSL EVP_VerifyFinal\nfunction, which allows remote attackers to bypass validation of the\ncertificate chain via a malformed SSL/TLS signature for DSA and ECDSA\nkeys, a similar vulnerability to CVE-2008-5077.\n\n - fix buffer overflow when parsing Autokey association\n message (#500783, CVE-2009-1252)\n\n - fix buffer overflow in ntpq (#500783, CVE-2009-0159)\n\n - fix check for malformed signatures (#479698,\n CVE-2009-0021)\n\n - fix selecting multicast interface (#444106)\n\n - disable kernel discipline when -x option is used\n (#431729)\n\n - avoid use of uninitialized floating-point values in\n clock_select (#250838)\n\n - generate man pages from html source, include config man\n pages (#307271)\n\n - add note about paths and exit codes to ntpd man page\n (#242925, #246568)\n\n - add section about exit codes to ntpd man page (#319591)\n\n - always return 0 in scriptlets\n\n - pass additional options to ntpdate (#240141)\n\n - fix broadcast client to accept broadcasts on\n 255.255.255.255 (#226958)\n\n - compile with crypto support on 64bit architectures\n (#239580)\n\n - add ncurses-devel to buildrequires (#239580)\n\n - exit with nonzero code if ntpd -q did not set clock\n (#240134)\n\n - fix return codes in init script (#240118)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/oraclevm-errata/2009-May/000024.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected ntp package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(20, 119, 287);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:vm:ntp\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:vm_server:2.1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2009/05/27\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/11/26\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.\");\n script_family(english:\"OracleVM Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleVM/release\", \"Host/OracleVM/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/OracleVM/release\");\nif (isnull(release) || \"OVS\" >!< release) audit(AUDIT_OS_NOT, \"OracleVM\");\nif (! ereg(pattern:\"^OVS\" + \"2\\.1\" + \"(\\.[0-9]|$)\", string:release)) audit(AUDIT_OS_NOT, \"OracleVM 2.1\", \"OracleVM \" + release);\nif (!get_kb_item(\"Host/OracleVM/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"OracleVM\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"OVS2.1\", reference:\"ntp-4.2.2p1-9.el5_3.2\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ntp\");\n}\n", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-02-21T01:11:30", "bulletinFamily": "scanner", "description": "This update of ntp improves a check for the return value of openssl's function EVP_VerifyFinal(). (CVE-2009-0021)", "modified": "2014-06-13T00:00:00", "id": "SUSE_XNTP-5936.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=35723", "published": "2009-02-20T00:00:00", "title": "openSUSE 10 Security Update : xntp (xntp-5936)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update xntp-5936.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(35723);\n script_version (\"$Revision: 1.6 $\");\n script_cvs_date(\"$Date: 2014/06/13 20:36:50 $\");\n\n script_cve_id(\"CVE-2009-0021\");\n\n script_name(english:\"openSUSE 10 Security Update : xntp (xntp-5936)\");\n script_summary(english:\"Check for the xntp-5936 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update of ntp improves a check for the return value of openssl's\nfunction EVP_VerifyFinal(). (CVE-2009-0021)\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xntp package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_cwe_id(287);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xntp\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:10.3\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2009/01/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/02/20\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2014 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE10\\.3)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"10.3\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE10.3\", reference:\"xntp-4.2.4p3-25.2\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"xntp\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2019-02-21T01:11:28", "bulletinFamily": "scanner", "description": "This update fixes CVE-2009-0021: NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to CVE-2008-5077.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "modified": "2018-11-28T00:00:00", "id": "FEDORA_2009-0547.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=35455", "published": "2009-01-26T00:00:00", "title": "Fedora 9 : ntp-4.2.4p6-1.fc9 (2009-0547)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2009-0547.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(35455);\n script_version (\"1.18\");\n script_cvs_date(\"Date: 2018/11/28 22:47:42\");\n\n script_cve_id(\"CVE-2009-0021\");\n script_bugtraq_id(33150);\n script_xref(name:\"FEDORA\", value:\"2009-0547\");\n\n script_name(english:\"Fedora 9 : ntp-4.2.4p6-1.fc9 (2009-0547)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update fixes CVE-2009-0021: NTP 4.2.4 before 4.2.4p5 and 4.2.5\nbefore 4.2.5p150 does not properly check the return value from the\nOpenSSL EVP_VerifyFinal function, which allows remote attackers to\nbypass validation of the certificate chain via a malformed SSL/TLS\nsignature for DSA and ECDSA keys, a similar vulnerability to\nCVE-2008-5077.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=476807\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2009-January/019306.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?15a8ae0c\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected ntp package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(287);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:ntp\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:9\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2009/01/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/01/26\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^9([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 9.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC9\", reference:\"ntp-4.2.4p6-1.fc9\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ntp\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2019-02-21T01:11:41", "bulletinFamily": "scanner", "description": "A flaw was found in how NTP checked the return value of signature verification. A remote attacker could use this to bypass certificate validation by using a malformed SSL/TLS signature (CVE-2009-0021).\n\nThe updated packages have been patched to prevent this issue.", "modified": "2018-07-19T00:00:00", "id": "MANDRIVA_MDVSA-2009-007.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=36723", "published": "2009-04-23T00:00:00", "title": "Mandriva Linux Security Advisory : ntp (MDVSA-2009:007)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandriva Linux Security Advisory MDVSA-2009:007. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(36723);\n script_version (\"1.15\");\n script_cvs_date(\"Date: 2018/07/19 20:59:15\");\n\n script_cve_id(\"CVE-2009-0021\");\n script_bugtraq_id(33150);\n script_xref(name:\"MDVSA\", value:\"2009:007\");\n\n script_name(english:\"Mandriva Linux Security Advisory : ntp (MDVSA-2009:007)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandriva Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A flaw was found in how NTP checked the return value of signature\nverification. A remote attacker could use this to bypass certificate\nvalidation by using a malformed SSL/TLS signature (CVE-2009-0021).\n\nThe updated packages have been patched to prevent this issue.\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected ntp, ntp-client and / or ntp-doc packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(287);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:ntp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:ntp-client\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:ntp-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:linux:2008.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:linux:2008.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:linux:2009.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2009/01/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/04/23\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK2008.0\", reference:\"ntp-4.2.4-10.1mdv2008.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2008.0\", reference:\"ntp-client-4.2.4-10.1mdv2008.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2008.0\", reference:\"ntp-doc-4.2.4-10.1mdv2008.0\", yank:\"mdv\")) flag++;\n\nif (rpm_check(release:\"MDK2008.1\", reference:\"ntp-4.2.4-15.1mdv2008.1\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2008.1\", reference:\"ntp-client-4.2.4-15.1mdv2008.1\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2008.1\", reference:\"ntp-doc-4.2.4-15.1mdv2008.1\", yank:\"mdv\")) flag++;\n\nif (rpm_check(release:\"MDK2009.0\", reference:\"ntp-4.2.4-18.1mdv2009.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2009.0\", reference:\"ntp-client-4.2.4-18.1mdv2009.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2009.0\", reference:\"ntp-doc-4.2.4-18.1mdv2009.0\", yank:\"mdv\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2019-02-21T01:12:11", "bulletinFamily": "scanner", "description": "This update of ntp improves a check for the return value of openssl's function EVP_VerifyFinal(). (CVE-2009-0021)", "modified": "2014-06-13T00:00:00", "id": "SUSE_11_1_NTP-090119.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=40284", "published": "2009-07-21T00:00:00", "title": "openSUSE Security Update : ntp (ntp-439)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update ntp-439.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(40284);\n script_version(\"$Revision: 1.8 $\");\n script_cvs_date(\"$Date: 2014/06/13 19:55:05 $\");\n\n script_cve_id(\"CVE-2009-0021\");\n\n script_name(english:\"openSUSE Security Update : ntp (ntp-439)\");\n script_summary(english:\"Check for the ntp-439 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update of ntp improves a check for the return value of openssl's\nfunction EVP_VerifyFinal(). (CVE-2009-0021)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=459662\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected ntp package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_cwe_id(287);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:ntp\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:11.1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2009/01/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/07/21\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2014 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE11\\.1)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"11.1\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE11.1\", reference:\"ntp-4.2.4p5-15.11.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ntp\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2019-02-21T01:11:37", "bulletinFamily": "scanner", "description": "This update fixes CVE-2009-0021: NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to CVE-2008-5077.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "modified": "2015-10-21T00:00:00", "id": "FEDORA_2009-0544.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=36222", "published": "2009-04-23T00:00:00", "title": "Fedora 10 : ntp-4.2.4p6-1.fc10 (2009-0544)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2009-0544.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(36222);\n script_version (\"$Revision: 1.14 $\");\n script_cvs_date(\"$Date: 2015/10/21 22:32:47 $\");\n\n script_cve_id(\"CVE-2009-0021\");\n script_xref(name:\"FEDORA\", value:\"2009-0544\");\n\n script_name(english:\"Fedora 10 : ntp-4.2.4p6-1.fc10 (2009-0544)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update fixes CVE-2009-0021: NTP 4.2.4 before 4.2.4p5 and 4.2.5\nbefore 4.2.5p150 does not properly check the return value from the\nOpenSSL EVP_VerifyFinal function, which allows remote attackers to\nbypass validation of the certificate chain via a malformed SSL/TLS\nsignature for DSA and ECDSA keys, a similar vulnerability to\nCVE-2008-5077.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=476807\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2009-January/019321.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?0ab1787d\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected ntp package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_cwe_id(287);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:ntp\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:10\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2009/01/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/04/23\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^10([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 10.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC10\", reference:\"ntp-4.2.4p6-1.fc10\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ntp\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2019-02-21T01:12:26", "bulletinFamily": "scanner", "description": "This update of ntp improves a check for the return value of openssl's function EVP_VerifyFinal(). (CVE-2009-0021) Additionally a fix (non-security) for starting ntpd with the option -x was added.", "modified": "2012-04-23T00:00:00", "id": "SUSE9_12338.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=41269", "published": "2009-09-24T00:00:00", "title": "SuSE9 Security Update : xntp, xntp-doc (YOU Patch Number 12338)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The text description of this plugin is (C) Novell, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(41269);\n script_version(\"$Revision: 1.5 $\");\n script_cvs_date(\"$Date: 2012/04/23 18:14:43 $\");\n\n script_cve_id(\"CVE-2009-0021\");\n\n script_name(english:\"SuSE9 Security Update : xntp, xntp-doc (YOU Patch Number 12338)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 9 host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update of ntp improves a check for the return value of openssl's\nfunction EVP_VerifyFinal(). (CVE-2009-0021) Additionally a fix\n(non-security) for starting ntpd with the option -x was added.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2009-0021.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Apply YOU patch number 12338.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_cwe_id(287);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:suse:suse_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2009/01/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/09/24\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2012 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) exit(0, \"Local checks are not enabled.\");\nif (!get_kb_item(\"Host/SuSE/release\")) exit(0, \"The host is not running SuSE.\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) exit(1, \"Could not obtain the list of installed packages.\");\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) exit(1, \"Failed to determine the architecture type.\");\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") exit(1, \"Local checks for SuSE 9 on the '\"+cpu+\"' architecture have not been implemented.\");\n\n\nflag = 0;\nif (rpm_check(release:\"SUSE9\", reference:\"xntp-4.2.0a-23.17\")) flag++;\nif (rpm_check(release:\"SUSE9\", reference:\"xntp-doc-4.2.0a-23.17\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse exit(0, \"The host is not affected.\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2019-02-21T01:12:07", "bulletinFamily": "scanner", "description": "This update of ntp improves a check for the return value of openssl's function EVP_VerifyFinal(). (CVE-2009-0021)", "modified": "2014-06-13T00:00:00", "id": "SUSE_11_0_NTP-090119.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=40082", "published": "2009-07-21T00:00:00", "title": "openSUSE Security Update : ntp (ntp-439)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update ntp-439.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(40082);\n script_version(\"$Revision: 1.8 $\");\n script_cvs_date(\"$Date: 2014/06/13 19:44:03 $\");\n\n script_cve_id(\"CVE-2009-0021\");\n\n script_name(english:\"openSUSE Security Update : ntp (ntp-439)\");\n script_summary(english:\"Check for the ntp-439 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update of ntp improves a check for the return value of openssl's\nfunction EVP_VerifyFinal(). (CVE-2009-0021)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=459662\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected ntp package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_cwe_id(287);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:ntp\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:11.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2009/01/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/07/21\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2014 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE11\\.0)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"11.0\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE11.0\", reference:\"ntp-4.2.4p4-44.2\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ntp\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}], "slackware": [{"lastseen": "2019-05-30T07:37:14", "bulletinFamily": "unix", "description": "New ntp packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2,\n11.0, 12.0, 12.1, 12.2, and -current to a fix security issue.\n\nMore details about this issue may be found here:\n https://lists.ntp.org/pipermail/announce/2009-January/000055.html\n http://www.ocert.org/advisories/ocert-2008-016.html\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0021\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5077\n\n\nHere are the details from the Slackware 12.2 ChangeLog:\n\npatches/packages/ntp-4.2.4p6-i486-1_slack12.2.tgz:\n [Sec 1111] Fix incorrect check of EVP_VerifyFinal()'s return value.\n For more information, see:\n https://lists.ntp.org/pipermail/announce/2009-January/000055.html\n http://www.ocert.org/advisories/ocert-2008-016.html\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0021\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5077\n (* Security fix *)\n\nWhere to find the new packages:\n\nHINT: Getting slow download speeds from ftp.slackware.com?\nGive slackware.osuosl.org a try. This is another primary FTP site\nfor Slackware that can be considerably faster than downloading\ndirectly from ftp.slackware.com.\n\nThanks to the friendly folks at the OSU Open Source Lab\n(http://osuosl.org) for donating additional FTP and rsync hosting\nto the Slackware project! :-)\n\nAlso see the "Get Slack" section on http://slackware.com for\nadditional mirror sites near you.\n\nUpdated package for Slackware 8.1:\nftp://ftp.slackware.com/pub/slackware/slackware-8.1/patches/packages/ntp-4.2.4p6-i386-1_slack8.1.tgz\n\nUpdated package for Slackware 9.0:\nftp://ftp.slackware.com/pub/slackware/slackware-9.0/patches/packages/ntp-4.2.4p6-i386-1_slack9.0.tgz\n\nUpdated package for Slackware 9.1:\nftp://ftp.slackware.com/pub/slackware/slackware-9.1/patches/packages/ntp-4.2.4p6-i486-1_slack9.1.tgz\n\nUpdated package for Slackware 10.0:\nftp://ftp.slackware.com/pub/slackware/slackware-10.0/patches/packages/ntp-4.2.4p6-i486-1_slack10.0.tgz\n\nUpdated package for Slackware 10.1:\nftp://ftp.slackware.com/pub/slackware/slackware-10.1/patches/packages/ntp-4.2.4p6-i486-1_slack10.1.tgz\n\nUpdated package for Slackware 10.2:\nftp://ftp.slackware.com/pub/slackware/slackware-10.2/patches/packages/ntp-4.2.4p6-i486-1_slack10.2.tgz\n\nUpdated package for Slackware 11.0:\nftp://ftp.slackware.com/pub/slackware/slackware-11.0/patches/packages/ntp-4.2.4p6-i486-1_slack11.0.tgz\n\nUpdated package for Slackware 12.0:\nftp://ftp.slackware.com/pub/slackware/slackware-12.0/patches/packages/ntp-4.2.4p6-i486-1_slack12.0.tgz\n\nUpdated package for Slackware 12.1:\nftp://ftp.slackware.com/pub/slackware/slackware-12.1/patches/packages/ntp-4.2.4p6-i486-1_slack12.1.tgz\n\nUpdated package for Slackware 12.2:\nftp://ftp.slackware.com/pub/slackware/slackware-12.2/patches/packages/ntp-4.2.4p6-i486-1_slack12.2.tgz\n\nUpdated package for Slackware -current:\nftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/ntp-4.2.4p6-i486-1.tgz\n\n\nMD5 signatures:\n\nSlackware 8.1 package:\nbe95d635d683bfd19c1c66ef8fe258c1 ntp-4.2.4p6-i386-1_slack8.1.tgz\n\nSlackware 9.0 package:\n3f6e8c29282024f14af9ae9ae0eb5c62 ntp-4.2.4p6-i386-1_slack9.0.tgz\n\nSlackware 9.1 package:\n086b2b0e2d0caf1e2f34327c30a4a5bb ntp-4.2.4p6-i486-1_slack9.1.tgz\n\nSlackware 10.0 package:\n7fcfec9f57c1ab6a70b81d063e58a5e2 ntp-4.2.4p6-i486-1_slack10.0.tgz\n\nSlackware 10.1 package:\n59d6a05ca3e3e78e6c6845e307c55423 ntp-4.2.4p6-i486-1_slack10.1.tgz\n\nSlackware 10.2 package:\n5e43d7c1a34bdd65e808cec06cfb7ca1 ntp-4.2.4p6-i486-1_slack10.2.tgz\n\nSlackware 11.0 package:\n41d99a52c1395cb7d1e56fa5eb2d7fde ntp-4.2.4p6-i486-1_slack11.0.tgz\n\nSlackware 12.0 package:\n1396976a5b8ef4578277a12abcbb56c9 ntp-4.2.4p6-i486-1_slack12.0.tgz\n\nSlackware 12.1 package:\n297b2f95e96e0420088af2aed7213cc5 ntp-4.2.4p6-i486-1_slack12.1.tgz\n\nSlackware 12.2 package:\nd587492d3306a487124cedc45f7d6d4a ntp-4.2.4p6-i486-1_slack12.2.tgz\n\nSlackware -current package:\ne4b51a76744d8c271a9b7324f4355e4c ntp-4.2.4p6-i486-1.tgz\n\n\nInstallation instructions:\n\nUpgrade the package as root:\n > upgradepkg ntp-4.2.4p6-i486-1_slack12.2.tgz", "modified": "2009-01-14T23:15:12", "published": "2009-01-14T23:15:12", "id": "SSA-2009-014-03", "href": "http://www.slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.531177", "title": "ntp", "type": "slackware", "cvss": {"score": 5.8, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:P"}}], "gentoo": [{"lastseen": "2016-09-06T19:46:00", "bulletinFamily": "unix", "description": "### Background\n\nntp contains the client and daemon implementations for the Network Time Protocol. \n\n### Description\n\nIt has been reported that ntp incorrectly checks the return value of the EVP_VerifyFinal(), a vulnerability related to CVE-2008-5077 (GLSA 200902-02). \n\n### Impact\n\nA remote attacker could exploit this vulnerability to spoof arbitrary names to conduct Man-In-The-Middle attacks and intercept sensitive information. \n\n### Workaround\n\nThere is no known workaround at this time. \n\n### Resolution\n\nAll ntp users should upgrade to the latest version: \n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=net-misc/ntp-4.2.4_p6\"", "modified": "2009-04-05T00:00:00", "published": "2009-04-05T00:00:00", "id": "GLSA-200904-05", "href": "https://security.gentoo.org/glsa/200904-05", "type": "gentoo", "title": "ntp: Certificate validation error", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}], "securityvulns": [{"lastseen": "2018-08-31T11:10:28", "bulletinFamily": "software", "description": "#2008-016 multiple OpenSSL signature verification API misuse\r\n\r\nDescription:\r\n\r\nSeveral functions inside the OpenSSL library incorrectly check the result\r\nafter calling the EVP_VerifyFinal function.\r\n\r\nThis bug allows a malformed signature to be treated as a good signature\r\nrather than as an error. This issue affects the signature checks on DSA\r\nand ECDSA keys used with SSL/TLS.\r\n\r\nThe flaw may be exploited by a malicious server or a man-in-the-middle\r\nattack that presents a malformed SSL/TLS signature from a certificate\r\nchain to a vulnerable client, bypassing validation.\r\n\r\nA patch fixing the issue with proper return code checking and further\r\nimportant recommendations are described in the original OpenSSL Team\r\nadvisory.\r\n\r\nAt the request of the OpenSSL team, oCERT has aided in the remediation\r\ncoordination for other projects with similar API misuse vulnerabilities.\r\nIn addition to EVP_VerifyFinal, the return codes from DSA_verify and\r\nDSA_do_verify functions were being incorrectly validated, and packages\r\ndoing so are affected in a similar fashion as OpenSSL.\r\n\r\n\r\nAffected version:\r\n\r\nOpenSSL <= 0.9.8i [1]\r\n\r\nThe following packages were identified as affected by the same OpenSSL\r\nvulnerability, as they use OpenSSL EVP_VerifyFinal function and\r\nincorrectly check the return code.\r\n\r\nNTP <= 4.2.4p5 (production), <= 4.2.5p150 (development)\r\n\r\nSun GridEngine <= 5.3\r\n\r\nGale <= 0.99\r\n\r\nOpenEvidence <= 1.0.6\r\n\r\nBelgian eID middleware - eidlib <= 2.6.0 [2]\r\n\r\nFreedom Network Server <= 2.x\r\n\r\nThe following packages were identified as affected by a vulnerability\r\nsimilar to the OpenSSL one, as they use OpenSSL DSA_verify function and\r\nincorrectly check the return code.\r\n\r\nBIND <= 9.4.3\r\n\r\nLasso <= 2.2.1\r\n\r\nZXID <= 0.29\r\n\r\n1 - use of OpenSSL as an SSL/TLS client when connecting to a server whose\r\ncertificate uses an RSA key is NOT affected. Verification of client\r\ncertificates by OpenSSL servers for any key type is NOT affected.\r\n\r\n2 - Belgian eID middleware latest versions are not available in source\r\nform, therefore we cannot confirm if they are affected\r\n\r\n\r\nFixed version:\r\n\r\nOpenSSL >= 0.9.8j\r\n\r\nNTP >= 4.2.4p6 (production), >= 4.2.5p153 (development)\r\n\r\nSun GridEngine >= 6.0\r\n\r\nGale N/A\r\n\r\nOpenEvidence N/A\r\n\r\nBelgian eID middleware - eidlib N/A\r\n\r\nFreedom Network Server N/A\r\n\r\nBIND >= 9.3.6-P1, 9.4.3-P1, 9.5.1-P1, 9.6.0-P1\r\n\r\nLasso >= 2.2.2\r\n\r\nZXID N/A\r\n\r\n\r\nCredit: Google Security Team (for the original OpenSSL issue).\r\n\r\n\r\nCVE: CVE-2008-5077 (OpenSSL),\r\n CVE-2009-0021 (NTP),\r\n CVE-2009-0025 (BIND)\r\n\r\n\r\nTimeline:\r\n2008-12-16: OpenSSL Security Team requests coordination aid from oCERT\r\n2008-12-16: oCERT investigates packages affected by similar issues\r\n2008-12-16: contacted affected vendors\r\n2008-12-17: investigation expanded to DSA verification\r\n2008-12-17: BIND, Lasso and ZXID added to affected packages\r\n2008-12-18: contacted additional affected vendors\r\n2009-01-05: status updates and patch dissemination to affected vendors\r\n2009-01-05: confirmation from BIND of issue and fix\r\n2009-01-06: requested CVE assignment for BIND\r\n2009-01-07: advisory published\r\n\r\n\r\nReferences:\r\nhttp://openssl.org/news/secadv_20090107.txt\r\n\r\n\r\nLinks:\r\nhttp://openssl.org/\r\nhttp://www.ntp.org/\r\nhttp://gridengine.sunsource.net/\r\nhttp://gale.org/\r\nhttp://www.openevidence.org/\r\nhttp://eid.belgium.be/\r\nhttp://www.google.com/codesearch/p?#1vGzyQX--LU/achilles/remailer/zero-knowledge/freedomserver-2.x.tgz/\r\nhttps://www.isc.org/products/BIND\r\nhttp://lasso.entrouvert.org/\r\nhttp://www.zxid.org/\r\n\r\n\r\nPermalink:\r\nhttp://www.ocert.org/advisories/ocert-2008-016.html\r\n\r\n\r\n--\r\nWill Drewry <redpig@ocert.org>\r\noCERT Team :: http://ocert.org", "modified": "2009-01-09T00:00:00", "published": "2009-01-09T00:00:00", "id": "SECURITYVULNS:DOC:21113", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:21113", "title": "[oCERT-2008-016] Multiple OpenSSL signature verification API misuses", "type": "securityvulns", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T11:09:31", "bulletinFamily": "software", "description": "Multiple vulnerabilities in SSL/TLS DSA/ECDSA certificate chain validations.", "modified": "2009-02-10T00:00:00", "published": "2009-02-10T00:00:00", "id": "SECURITYVULNS:VULN:9564", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:9564", "title": "OpenSSL / ntp / bind / boinc certificate validation cryptographic vulnerabilities", "type": "securityvulns", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T11:10:28", "bulletinFamily": "software", "description": "-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA1\r\n\r\n=============================================================================\r\nFreeBSD-SA-09:02.openssl Security Advisory\r\n The FreeBSD Project\r\n\r\nTopic: OpenSSL incorrectly checks for malformed signatures\r\n\r\nCategory: contrib\r\nModule: openssl\r\nAnnounced: 2009-01-07\r\nCredits: Google Security Team\r\nAffects: All FreeBSD releases\r\nCorrected: 2009-01-07 21:03:41 UTC (RELENG_7, 7.1-STABLE)\r\n 2009-01-07 20:17:55 UTC (RELENG_7_1, 7.1-RELEASE-p1)\r\n 2009-01-07 20:17:55 UTC (RELENG_7_0, 7.0-RELEASE-p8)\r\n 2009-01-07 20:17:55 UTC (RELENG_6, 6.4-STABLE)\r\n 2009-01-07 20:17:55 UTC (RELENG_6_4, 6.4-RELEASE-p2)\r\n 2009-01-07 20:17:55 UTC (RELENG_6_3, 6.3-RELEASE-p8)\r\nCVE Name: CVE-2008-5077\r\n\r\nFor general information regarding FreeBSD Security Advisories,\r\nincluding descriptions of the fields above, security branches, and the\r\nfollowing sections, please visit <URL:http://security.FreeBSD.org/>.\r\n\r\nI. Background\r\n\r\nFreeBSD includes software from the OpenSSL Project. The OpenSSL Project is\r\na collaborative effort to develop a robust, commercial-grade, full-featured\r\nOpen Source toolkit implementing the Secure Sockets Layer (SSL v2/v3)\r\nand Transport Layer Security (TLS v1) protocols as well as a full-strength\r\ngeneral purpose cryptography library.\r\n\r\nII. Problem Description\r\n\r\nThe EVP_VerifyFinal() function from OpenSSL is used to determine if a\r\ndigital signature is valid. The SSL layer in OpenSSL uses\r\nEVP_VerifyFinal(), which in several places checks the return value\r\nincorrectly and treats verification errors as a good signature. This\r\nis only a problem for DSA and ECDSA keys.\r\n\r\nIII. Impact\r\n\r\nFor applications using OpenSSL for SSL connections, an invalid SSL\r\ncertificate may be interpreted as valid. This could for example be\r\nused by an attacker to perform a man-in-the-middle attack.\r\n\r\nOther applications which use the OpenSSL EVP API may similarly be\r\naffected.\r\n\r\nIV. Workaround\r\n\r\nFor a server an RSA signed certificate may be used instead of DSA or\r\nECDSA based certificate.\r\n\r\nNote that Mozilla Firefox does not use OpenSSL and thus is not\r\naffected.\r\n\r\nV. Solution\r\n\r\nPerform one of the following:\r\n\r\n1) Upgrade your vulnerable system to 6-STABLE, or 7-STABLE, or to the\r\nRELENG_7_1, RELENG_7_0, RELENG_6_4, or RELENG_6_3 security branch\r\ndated after the correction date.\r\n\r\n2) To patch your present system:\r\n\r\nThe following patches have been verified to apply to FreeBSD 6.3, 6.4,\r\n7.0, and 7.1 systems.\r\n\r\na) Download the relevant patch from the location below, and verify the\r\ndetached PGP signature using your PGP utility.\r\n\r\n[FreeBSD 7.x]\r\n# fetch http://security.FreeBSD.org/patches/SA-09:02/openssl.patch\r\n# fetch http://security.FreeBSD.org/patches/SA-09:02/openssl.patch.asc\r\n\r\n[FreeBSD 6.x]\r\n# fetch http://security.FreeBSD.org/patches/SA-09:02/openssl6.patch\r\n# fetch http://security.FreeBSD.org/patches/SA-09:02/openssl6.patch.asc\r\n\r\nb) Execute the following commands as root:\r\n\r\n# cd /usr/src\r\n# patch < /path/to/patch\r\n# cd /usr/src/secure/lib/libssl\r\n# make obj && make depend && make && make install\r\n# cd /usr/src/secure/usr.bin/openssl\r\n# make obj && make depend && make && make install\r\n\r\nNOTE: On the amd64 platform, the above procedure will not update the\r\nlib32 (i386 compatibility) libraries. On amd64 systems where the i386\r\ncompatibility libraries are used, the operating system should instead\r\nbe recompiled as described in\r\n<URL:http://www.FreeBSD.org/handbook/makeworld.html>\r\n\r\nVI. Correction details\r\n\r\nThe following list contains the revision numbers of each file that was\r\ncorrected in FreeBSD.\r\n\r\nCVS:\r\n\r\nBranch Revision\r\n Path\r\n- -------------------------------------------------------------------------\r\nRELENG_6\r\n src/crypto/openssl/apps/speed.c 1.13.2.1\r\n src/crypto/openssl/apps/verify.c 1.1.1.5.12.1\r\n src/crypto/openssl/apps/x509.c 1.1.1.10.2.1\r\n src/crypto/openssl/apps/spkac.c 1.1.1.4.12.1\r\n src/crypto/openssl/ssl/s2_srvr.c 1.12.2.1\r\n src/crypto/openssl/ssl/s3_clnt.c 1.1.1.12.2.1\r\n src/crypto/openssl/ssl/s3_srvr.c 1.1.1.14.2.2\r\n src/crypto/openssl/ssl/s2_clnt.c 1.13.2.2\r\nRELENG_6_4\r\n src/UPDATING 1.416.2.40.2.5\r\n src/sys/conf/newvers.sh 1.69.2.18.2.8\r\n src/crypto/openssl/apps/speed.c 1.13.12.1\r\n src/crypto/openssl/apps/verify.c 1.1.1.5.24.1\r\n src/crypto/openssl/apps/x509.c 1.1.1.10.12.1\r\n src/crypto/openssl/apps/spkac.c 1.1.1.4.24.1\r\n src/crypto/openssl/ssl/s2_srvr.c 1.12.12.1\r\n src/crypto/openssl/ssl/s3_clnt.c 1.1.1.12.12.1\r\n src/crypto/openssl/ssl/s3_srvr.c 1.1.1.14.2.1.6.1\r\n src/crypto/openssl/ssl/s2_clnt.c 1.13.2.1.6.1\r\nRELENG_6_3\r\n src/UPDATING 1.416.2.37.2.13\r\n src/sys/conf/newvers.sh 1.69.2.15.2.12\r\n src/crypto/openssl/apps/speed.c 1.13.10.1\r\n src/crypto/openssl/apps/verify.c 1.1.1.5.22.1\r\n src/crypto/openssl/apps/x509.c 1.1.1.10.10.1\r\n src/crypto/openssl/apps/spkac.c 1.1.1.4.22.1\r\n src/crypto/openssl/ssl/s2_srvr.c 1.12.10.1\r\n src/crypto/openssl/ssl/s3_clnt.c 1.1.1.12.10.1\r\n src/crypto/openssl/ssl/s3_srvr.c 1.1.1.14.2.1.4.1\r\n src/crypto/openssl/ssl/s2_clnt.c 1.13.2.1.4.1\r\nRELENG_7\r\n src/crypto/openssl/apps/speed.c 1.15.2.1\r\n src/crypto/openssl/apps/verify.c 1.1.1.6.2.1\r\n src/crypto/openssl/apps/x509.c 1.1.1.11.2.1\r\n src/crypto/openssl/apps/spkac.c 1.1.1.5.2.1\r\n src/crypto/openssl/ssl/s2_srvr.c 1.13.2.1\r\n src/crypto/openssl/ssl/s3_clnt.c 1.1.1.14.2.1\r\n src/crypto/openssl/ssl/s3_srvr.c 1.1.1.17.2.1\r\n src/crypto/openssl/ssl/ssltest.c 1.1.1.10.2.1\r\n src/crypto/openssl/ssl/s2_clnt.c 1.15.2.1\r\nRELENG_7_1\r\n src/UPDATING 1.507.2.13.2.4\r\n src/sys/conf/newvers.sh 1.72.2.9.2.5\r\n src/crypto/openssl/apps/speed.c 1.15.6.1\r\n src/crypto/openssl/apps/verify.c 1.1.1.6.6.1\r\n src/crypto/openssl/apps/x509.c 1.1.1.11.6.1\r\n src/crypto/openssl/apps/spkac.c 1.1.1.5.6.1\r\n src/crypto/openssl/ssl/s2_srvr.c 1.13.6.1\r\n src/crypto/openssl/ssl/s3_clnt.c 1.1.1.14.6.1\r\n src/crypto/openssl/ssl/s3_srvr.c 1.1.1.17.6.1\r\n src/crypto/openssl/ssl/ssltest.c 1.1.1.10.6.1\r\n src/crypto/openssl/ssl/s2_clnt.c 1.15.6.1\r\nRELENG_7_0\r\n src/UPDATING 1.507.2.3.2.12\r\n src/sys/conf/newvers.sh 1.72.2.5.2.12\r\n src/crypto/openssl/apps/speed.c 1.15.4.1\r\n src/crypto/openssl/apps/verify.c 1.1.1.6.4.1\r\n src/crypto/openssl/apps/x509.c 1.1.1.11.4.1\r\n src/crypto/openssl/apps/spkac.c 1.1.1.5.4.1\r\n src/crypto/openssl/ssl/s2_srvr.c 1.13.4.1\r\n src/crypto/openssl/ssl/s3_clnt.c 1.1.1.14.4.1\r\n src/crypto/openssl/ssl/s3_srvr.c 1.1.1.17.4.1\r\n src/crypto/openssl/ssl/ssltest.c 1.1.1.10.4.1\r\n src/crypto/openssl/ssl/s2_clnt.c 1.15.4.1\r\n- -------------------------------------------------------------------------\r\n\r\nSubversion:\r\n\r\nBranch/path Revision\r\n- -------------------------------------------------------------------------\r\nstable/6/ r186873\r\nreleng/6.4/ r186872\r\nreleng/6.3/ r186872\r\nstable/7/ r186872\r\nreleng/7.1/ r186872\r\nreleng/7.0/ r186872\r\n- -------------------------------------------------------------------------\r\n\r\nVII. References\r\n\r\nhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5077\r\nhttp://www.openssl.org/news/secadv_20090107.txt\r\n\r\nThe latest revision of this advisory is available at\r\nhttp://security.FreeBSD.org/advisories/FreeBSD-SA-09:02.openssl.asc\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: GnuPG v1.4.9 (FreeBSD)\r\n\r\niD8DBQFJZR5ZFdaIBMps37IRAofJAJ4lm2jGfsMo28c0W4zRkhZrKmttGwCgmdd9\r\nIvNUwk47W24SwhQAGH5+Ggw=\r\n=UHSl\r\n-----END PGP SIGNATURE-----", "modified": "2009-01-09T00:00:00", "published": "2009-01-09T00:00:00", "id": "SECURITYVULNS:DOC:21114", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:21114", "title": "FreeBSD Security Advisory FreeBSD-SA-09:02.openssl", "type": "securityvulns", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}], "redhat": [{"lastseen": "2019-05-29T14:35:18", "bulletinFamily": "unix", "description": "The Network Time Protocol (NTP) is used to synchronize a computer's time\nwith a referenced time source.\n\nA flaw was discovered in the way the ntpd daemon checked the return value\nof the OpenSSL EVP_VerifyFinal function. On systems using NTPv4\nauthentication, this could lead to an incorrect verification of\ncryptographic signatures, allowing time-spoofing attacks. (CVE-2009-0021)\n\nNote: This issue only affects systems that have enabled NTP authentication.\nBy default, NTP authentication is not enabled.\n\nAll ntp users are advised to upgrade to the updated packages, which contain\na backported patch to resolve this issue. After installing the update, the\nntpd daemon will restart automatically.", "modified": "2017-09-08T12:19:31", "published": "2009-01-29T05:00:00", "id": "RHSA-2009:0046", "href": "https://access.redhat.com/errata/RHSA-2009:0046", "type": "redhat", "title": "(RHSA-2009:0046) Moderate: ntp security update", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2019-05-29T14:35:07", "bulletinFamily": "unix", "description": "OpenSSL is a toolkit that implements Secure Sockets Layer (SSL v2/v3) and\nTransport Layer Security (TLS v1) protocols as well as a full-strength,\ngeneral purpose, cryptography library.\n\nThe Google security team discovered a flaw in the way OpenSSL checked the\nverification of certificates. An attacker in control of a malicious server,\nor able to effect a \"man in the middle\" attack, could present a malformed\nSSL/TLS signature from a certificate chain to a vulnerable client and\nbypass validation. (CVE-2008-5077)\n\nAll OpenSSL users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues. For the update to take effect,\nall running OpenSSL client applications must be restarted, or the system\nrebooted.", "modified": "2019-03-22T23:42:43", "published": "2009-01-07T05:00:00", "id": "RHSA-2009:0004", "href": "https://access.redhat.com/errata/RHSA-2009:0004", "type": "redhat", "title": "(RHSA-2009:0004) Important: openssl security update", "cvss": {"score": 5.8, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:P"}}], "centos": [{"lastseen": "2019-05-29T18:33:28", "bulletinFamily": "unix", "description": "**CentOS Errata and Security Advisory** CESA-2009:0046\n\n\nThe Network Time Protocol (NTP) is used to synchronize a computer's time\nwith a referenced time source.\n\nA flaw was discovered in the way the ntpd daemon checked the return value\nof the OpenSSL EVP_VerifyFinal function. On systems using NTPv4\nauthentication, this could lead to an incorrect verification of\ncryptographic signatures, allowing time-spoofing attacks. (CVE-2009-0021)\n\nNote: This issue only affects systems that have enabled NTP authentication.\nBy default, NTP authentication is not enabled.\n\nAll ntp users are advised to upgrade to the updated packages, which contain\na backported patch to resolve this issue. After installing the update, the\nntpd daemon will restart automatically.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2009-April/015754.html\nhttp://lists.centos.org/pipermail/centos-announce/2009-April/015755.html\nhttp://lists.centos.org/pipermail/centos-announce/2009-February/015602.html\nhttp://lists.centos.org/pipermail/centos-announce/2009-February/015603.html\n\n**Affected packages:**\nntp\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2009-0046.html", "modified": "2009-04-09T18:43:49", "published": "2009-02-04T18:58:29", "href": "http://lists.centos.org/pipermail/centos-announce/2009-February/015602.html", "id": "CESA-2009:0046", "title": "ntp security update", "type": "centos", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2019-05-29T18:34:04", "bulletinFamily": "unix", "description": "**CentOS Errata and Security Advisory** CESA-2009:0004\n\n\nOpenSSL is a toolkit that implements Secure Sockets Layer (SSL v2/v3) and\nTransport Layer Security (TLS v1) protocols as well as a full-strength,\ngeneral purpose, cryptography library.\n\nThe Google security team discovered a flaw in the way OpenSSL checked the\nverification of certificates. An attacker in control of a malicious server,\nor able to effect a \"man in the middle\" attack, could present a malformed\nSSL/TLS signature from a certificate chain to a vulnerable client and\nbypass validation. (CVE-2008-5077)\n\nAll OpenSSL users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues. For the update to take effect,\nall running OpenSSL client applications must be restarted, or the system\nrebooted.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2009-February/015596.html\nhttp://lists.centos.org/pipermail/centos-announce/2009-February/015598.html\nhttp://lists.centos.org/pipermail/centos-announce/2009-February/015611.html\nhttp://lists.centos.org/pipermail/centos-announce/2009-February/015615.html\nhttp://lists.centos.org/pipermail/centos-announce/2009-January/015522.html\nhttp://lists.centos.org/pipermail/centos-announce/2009-January/015523.html\nhttp://lists.centos.org/pipermail/centos-announce/2009-January/015532.html\nhttp://lists.centos.org/pipermail/centos-announce/2009-January/015533.html\nhttp://lists.centos.org/pipermail/centos-announce/2009-January/015536.html\nhttp://lists.centos.org/pipermail/centos-announce/2009-January/015537.html\nhttp://lists.centos.org/pipermail/centos-announce/2009-January/015562.html\nhttp://lists.centos.org/pipermail/centos-announce/2009-January/015563.html\n\n**Affected packages:**\nopenssl\nopenssl-devel\nopenssl-perl\nopenssl096b\nopenssl097a\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2009-0004.html", "modified": "2009-02-05T15:56:11", "published": "2009-01-07T22:28:50", "href": "http://lists.centos.org/pipermail/centos-announce/2009-January/015522.html", "id": "CESA-2009:0004", "title": "openssl, openssl096b, openssl097a security update", "type": "centos", "cvss": {"score": 5.8, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:P"}}, {"lastseen": "2019-05-29T18:34:28", "bulletinFamily": "unix", "description": "**CentOS Errata and Security Advisory** CESA-2009:0004-01\n\n\nOpenSSL is a toolkit that implements Secure Sockets Layer (SSL v2/v3) and\nTransport Layer Security (TLS v1) protocols as well as a full-strength,\ngeneral purpose, cryptography library.\n\nThe Google security team discovered a flaw in the way OpenSSL checked the\nverification of certificates. An attacker in control of a malicious server,\nor able to effect a \"man in the middle\" attack, could present a malformed\nSSL/TLS signature from a certificate chain to a vulnerable client and\nbypass validation. (CVE-2008-5077)\n\nAll OpenSSL users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues. For the update to take effect,\nall running OpenSSL client applications must be restarted, or the system\nrebooted.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2009-February/015574.html\n\n**Affected packages:**\nopenssl\nopenssl-devel\nopenssl-perl\nopenssl095a\nopenssl096\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/rh21as-errata.html", "modified": "2009-02-02T23:30:18", "published": "2009-02-02T23:30:18", "href": "http://lists.centos.org/pipermail/centos-announce/2009-February/015574.html", "id": "CESA-2009:0004-01", "title": "openssl, openssl095a, openssl096 security update", "type": "centos", "cvss": {"score": 5.8, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:P"}}], "ubuntu": [{"lastseen": "2019-05-29T17:22:00", "bulletinFamily": "unix", "description": "It was discovered that NTP did not properly perform signature verification. A remote attacker could exploit this to bypass certificate validation via a malformed SSL/TLS signature.", "modified": "2009-01-08T00:00:00", "published": "2009-01-08T00:00:00", "id": "USN-705-1", "href": "https://usn.ubuntu.com/705-1/", "title": "NTP vulnerability", "type": "ubuntu", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2019-05-29T17:23:37", "bulletinFamily": "unix", "description": "It was discovered that OpenSSL did not properly perform signature verification on DSA and ECDSA keys. If user or automated system connected to a malicious server or a remote attacker were able to perform a man-in-the-middle attack, this flaw could be exploited to view sensitive information.", "modified": "2009-01-07T00:00:00", "published": "2009-01-07T00:00:00", "id": "USN-704-1", "href": "https://usn.ubuntu.com/704-1/", "title": "OpenSSL vulnerability", "type": "ubuntu", "cvss": {"score": 5.8, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:P"}}], "oraclelinux": [{"lastseen": "2019-05-29T18:38:22", "bulletinFamily": "unix", "description": "[4.2.2p1-9.el5_3.1]\n- fix check for malformed signatures (#479698, CVE-2009-0021)", "modified": "2009-01-29T00:00:00", "published": "2009-01-29T00:00:00", "id": "ELSA-2009-0046", "href": "http://linux.oracle.com/errata/ELSA-2009-0046.html", "title": "ntp security update", "type": "oraclelinux", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}], "debian": [{"lastseen": "2019-05-30T02:21:53", "bulletinFamily": "unix", "description": "- ------------------------------------------------------------------------\nDebian Security Advisory DSA-1702-1 security@debian.org\nhttp://www.debian.org/security/ Florian Weimer\nJanuary 12, 2009 http://www.debian.org/security/faq\n- ------------------------------------------------------------------------\n\nPackage : ntp\nVulnerability : interpretation conflict\nProblem type : remote\nDebian-specific: no\nCVE Id(s) : CVE-2009-0021\nDebian Bug : 511227\n\nIt has been discovered that NTP, an implementation of the Network Time\nProtocol, does not properly check the result of an OpenSSL function\nfor verifying cryptographic signatures, which may ultimately lead to\nthe acceptance of unauthenticated time information. (Note that\ncryptographic authentication of time servers is often not enabled in\nthe first place.)\n\nFor the stable distribution (etch), this problem has been fixed in\nversion 4.2.2.p4+dfsg-2etch1.\n\nFor the unstable distribution (sid), this problem has been fixed in\nversion 4.2.4p4+dfsg-8.\n\nThe testing distribution (lenny) will be fixed soon.\n\nWe recommend that you upgrade your ntp package.\n\nUpgrade instructions\n- --------------------\n\nwget url\n will fetch the file for you\ndpkg -i file.deb\n will install the referenced file.\n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n will update the internal database\napt-get upgrade\n will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration.\n\n\nDebian GNU/Linux 4.0 alias etch\n- -------------------------------\n\nSource archives:\n\n http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch1.dsc\n Size/MD5 checksum: 906 e0ae8fa9aad8606ad51a06511159c27d\n http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg.orig.tar.gz\n Size/MD5 checksum: 2199764 ad746cda2d90dbb9ed06fe164273c5d0\n http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch1.diff.gz\n Size/MD5 checksum: 176270 339515bd8d7e653a9fedb2bcad03bb74\n\nArchitecture independent packages:\n\n http://security.debian.org/pool/updates/main/n/ntp/ntp-doc_4.2.2.p4+dfsg-2etch1_all.deb\n Size/MD5 checksum: 910396 fc7d395c11365e371d58da5ab0d34bba\n http://security.debian.org/pool/updates/main/n/ntp/ntp-simple_4.2.2.p4+dfsg-2etch1_all.deb\n Size/MD5 checksum: 28380 4b4c4955ecd354a4bc884027786c368f\n http://security.debian.org/pool/updates/main/n/ntp/ntp-refclock_4.2.2.p4+dfsg-2etch1_all.deb\n Size/MD5 checksum: 28382 31adec52e5d82d9d3026a41b37dc6936\n\nalpha architecture (DEC Alpha)\n\n http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch1_alpha.deb\n Size/MD5 checksum: 64790 9f577a186d01ad00e9882cd3424d2cac\n http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch1_alpha.deb\n Size/MD5 checksum: 407826 3e07d1ea475302dd39019d1bdc982ce7\n\namd64 architecture (AMD x86_64 (AMD64))\n\n http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch1_amd64.deb\n Size/MD5 checksum: 61274 0aedd7774998dfb1641860d66821af35\n http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch1_amd64.deb\n Size/MD5 checksum: 359176 a0e6375e933a8e591f34122fdf8b2bb0\n\nhppa architecture (HP PA RISC)\n\n http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch1_hppa.deb\n Size/MD5 checksum: 61736 9230c434db7c6b89c8ca032262653d91\n http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch1_hppa.deb\n Size/MD5 checksum: 373162 36909f95cddcfda62096aa9052441189\n\ni386 architecture (Intel ia32)\n\n http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch1_i386.deb\n Size/MD5 checksum: 328564 91103db311d21a9da3fa7fbd3c3d076a\n http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch1_i386.deb\n Size/MD5 checksum: 57832 fc544d64adaac58dde6aef81a18a70fa\n\nia64 architecture (Intel ia64)\n\n http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch1_ia64.deb\n Size/MD5 checksum: 74470 19e2e2b4124a7ca1a82e43a29b3b99b5\n http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch1_ia64.deb\n Size/MD5 checksum: 523072 9b004e17c3541978ee1abdf2e02494bb\n\nmipsel architecture (MIPS (Little Endian))\n\n http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch1_mipsel.deb\n Size/MD5 checksum: 389912 45526855df18c76e2eb826983c3d450f\n http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch1_mipsel.deb\n Size/MD5 checksum: 63888 5bbabab2a3c5571b3c2fd82a80bb5582\n\npowerpc architecture (PowerPC)\n\n http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch1_powerpc.deb\n Size/MD5 checksum: 358632 187ec033929b189b6cd3dcb3f9377fbf\n http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch1_powerpc.deb\n Size/MD5 checksum: 61452 3e0560060aee1113105db444eddad1be\n\ns390 architecture (IBM S/390)\n\n http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch1_s390.deb\n Size/MD5 checksum: 60998 2dd5ba10abba0a55e5f22c76b67460fb\n http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch1_s390.deb\n Size/MD5 checksum: 349954 adeac4a7f39c3a2e945cfaf76e8159dc\n\nsparc architecture (Sun SPARC/UltraSPARC)\n\n http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch1_sparc.deb\n Size/MD5 checksum: 331972 a56d5e21ed84396f7439d7d49a5884ab\n http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch1_sparc.deb\n Size/MD5 checksum: 58316 78936a99f622964adb9f08f1739f77c9\n\n\n These files will probably be moved into the stable distribution on\n its next update.\n\n- ---------------------------------------------------------------------------------\nFor apt-get: deb http://security.debian.org/ stable/updates main\nFor dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main\nMailing list: debian-security-announce@lists.debian.org\nPackage info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>\n", "modified": "2009-01-12T20:34:35", "published": "2009-01-12T20:34:35", "id": "DEBIAN:DSA-1702-1:D3B79", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2009/msg00009.html", "title": "[SECURITY] [DSA 1702-1] New ntp packages fix cryptographic weakness", "type": "debian", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}], "seebug": [{"lastseen": "2017-11-19T19:01:45", "bulletinFamily": "exploit", "description": "BUGTRAQ ID: 33150\r\nCVE ID\uff1aCVE-2008-5077\r\nCNCVE ID\uff1aCNCVE-20085077\r\n\r\nOpenSSL\u662f\u4e00\u6b3e\u5f00\u653e\u6e90\u7801\u7684SSL\u5b9e\u73b0\uff0c\u7528\u6765\u5b9e\u73b0\u7f51\u7edc\u901a\u4fe1\u7684\u9ad8\u5f3a\u5ea6\u52a0\u5bc6\u3002\r\n\u90e8\u5206OpenSSL\u51fd\u6570\u9a8c\u8bc1DSA\u548cECDSA\u5bc6\u94a5\u65f6\u4e0d\u6b63\u786e\u9a8c\u8bc1"EVP_VerifyFinal()"\u51fd\u6570\u8fd4\u56de\u503c\uff0c\u53d1\u9001\u7279\u6b8a\u6784\u5efa\u7684\u7b7e\u540d\u8bc1\u4e66\u94fe\u7ed9\u5ba2\u6237\u7aef\uff0c\u53ef\u7ed5\u8fc7\u7b7e\u540d\u68c0\u67e5\u3002\r\n\u901a\u8fc7\u6076\u610f\u670d\u52a1\u5668\u6216\u4e2d\u95f4\u4eba\u653b\u51fb\uff0c\u53ef\u4f7f\u8bc1\u4e66\u94fe\u4e2d\u7684\u7578\u5f62SSL/TLS\u7b7e\u540d\u7ed5\u8fc7\u5ba2\u6237\u7aef\u8f6f\u4ef6\u68c0\u67e5\uff0c\u5bfc\u81f4\u76f2\u76ee\u4fe1\u4efb\u5e76\u6cc4\u6f0f\u654f\u611f\u4fe1\u606f\u3002\r\n\u6210\u529f\u5229\u7528\u6b64\u6f0f\u6d1e\u9700\u8981\u670d\u52a1\u5668\u4f7f\u7528\u5305\u542bDSA\u6216\u8005ECDSA\u5bc6\u94a5\u7684\u8bc1\u4e66\u3002\n\nUbuntu Ubuntu Linux 8.10 sparc\r\nUbuntu Ubuntu Linux 8.10 powerpc\r\nUbuntu Ubuntu Linux 8.10 lpia\r\nUbuntu Ubuntu Linux 8.10 i386\r\nUbuntu Ubuntu Linux 8.10 amd64\r\nUbuntu Ubuntu Linux 8.04 LTS sparc\r\nUbuntu Ubuntu Linux 8.04 LTS powerpc\r\nUbuntu Ubuntu Linux 8.04 LTS lpia\r\nUbuntu Ubuntu Linux 8.04 LTS i386\r\nUbuntu Ubuntu Linux 8.04 LTS amd64\r\nUbuntu Ubuntu Linux 7.10 sparc\r\nUbuntu Ubuntu Linux 7.10 powerpc\r\nUbuntu Ubuntu Linux 7.10 lpia\r\nUbuntu Ubuntu Linux 7.10 i386\r\nUbuntu Ubuntu Linux 7.10 amd64\r\nUbuntu Ubuntu Linux 6.06 LTS sparc\r\nUbuntu Ubuntu Linux 6.06 LTS powerpc\r\nUbuntu Ubuntu Linux 6.06 LTS i386\r\nUbuntu Ubuntu Linux 6.06 LTS amd64\r\nSun Grid Engine 5.3 x86\r\nSun Grid Engine 5.3 Sun Linux\r\nSun Grid Engine 5.3 64-bit SPARC\r\nSun Grid Engine 5.3 32-bit SPARC\r\nSun Grid Engine 5.3 \r\nRedHat Enterprise Linux WS 4\r\nRedHat Enterprise Linux WS 3\r\nRedHat Enterprise Linux WS 2.1 IA64\r\nRedHat Enterprise Linux WS 2.1\r\nRedHat Enterprise Linux ES 4\r\nRedHat Enterprise Linux ES 3\r\nRedHat Enterprise Linux ES 2.1 IA64\r\nRedHat Enterprise Linux ES 2.1\r\nRedHat Enterprise Linux Desktop Workstation 5 client\r\nRedHat Enterprise Linux Desktop 5 client\r\nRedHat Enterprise Linux AS 4\r\nRedHat Enterprise Linux AS 3\r\nRedHat Enterprise Linux AS 2.1 IA64\r\nRedHat Enterprise Linux AS 2.1\r\nRedHat Enterprise Linux 5 server\r\nRedHat Desktop 3.0 \r\nOpenSSL Project OpenSSL 0.9.8 i\r\nOpenSSL Project OpenSSL 0.9.8 e\r\nOpenSSL Project OpenSSL 0.9.8 d\r\nOpenSSL Project OpenSSL 0.9.8 c\r\nOpenSSL Project OpenSSL 0.9.8 b\r\nOpenSSL Project OpenSSL 0.9.8 a\r\nOpenSSL Project OpenSSL 0.9.8 \r\n+ Gentoo Linux \r\nOpenSSL Project OpenSSL 0.9.7 m\r\nOpenSSL Project OpenSSL 0.9.7 l\r\nOpenSSL Project OpenSSL 0.9.7 k\r\nOpenSSL Project OpenSSL 0.9.7 j\r\nOpenSSL Project OpenSSL 0.9.7 i\r\nOpenSSL Project OpenSSL 0.9.7 h\r\nOpenSSL Project OpenSSL 0.9.7 g\r\nOpenSSL Project OpenSSL 0.9.7 f\r\nOpenSSL Project OpenSSL 0.9.7 e\r\nOpenSSL Project OpenSSL 0.9.7 d\r\nOpenSSL Project OpenSSL 0.9.7 c\r\n+ OpenPKG OpenPKG 2.0 \r\n+ Slackware Linux 9.1 \r\n+ Slackware Linux 9.0 \r\n+ Slackware Linux -current\r\nOpenSSL Project OpenSSL 0.9.7 beta3\r\nOpenSSL Project OpenSSL 0.9.7 beta2\r\nOpenSSL Project OpenSSL 0.9.7 beta1\r\nOpenSSL Project OpenSSL 0.9.7 b\r\n+ OpenPKG OpenPKG 1.3 \r\nOpenSSL Project OpenSSL 0.9.7 a\r\n+ Conectiva Linux 9.0 \r\n+ OpenPKG OpenPKG Current\r\nOpenSSL Project OpenSSL 0.9.7 \r\nOpenSSL Project OpenSSL 0.9.6 m\r\nOpenSSL Project OpenSSL 0.9.6 l\r\nOpenSSL Project OpenSSL 0.9.6 k\r\nOpenSSL Project OpenSSL 0.9.6 j\r\nOpenSSL Project OpenSSL 0.9.6 i\r\nOpenSSL Project OpenSSL 0.9.6 h\r\nOpenSSL Project OpenSSL 0.9.6 g\r\n+ Conectiva Linux Enterprise Edition 1.0 \r\n+ FreeBSD FreeBSD 4.7 -RELEASE\r\n+ FreeBSD FreeBSD 4.7 \r\n+ HP Apache-Based Web Server 2.0.43 .04\r\n+ HP Apache-Based Web Server 2.0.43 .00\r\n+ HP Webmin-Based Admin 1.0 .01\r\n+ Immunix Immunix OS 7+\r\n+ NetBSD NetBSD 1.6 \r\n+ OpenPKG OpenPKG 1.1 \r\nOpenSSL Project OpenSSL 0.9.6 f\r\nOpenSSL Project OpenSSL 0.9.6 e\r\n+ FreeBSD FreeBSD 4.6 -RELEASE\r\n+ FreeBSD FreeBSD 4.6 \r\nOpenSSL Project OpenSSL 0.9.6 d\r\n+ Slackware Linux 8.1 \r\nOpenSSL Project OpenSSL 0.9.6 c\r\n+ Conectiva Linux 8.0 \r\n+ Debian Linux 3.0 sparc\r\n+ Debian Linux 3.0 s/390\r\n+ Debian Linux 3.0 ppc\r\n+ Debian Linux 3.0 mipsel\r\n+ Debian Linux 3.0 mips\r\n+ Debian Linux 3.0 m68k\r\n+ Debian Linux 3.0 ia-64\r\n+ Debian Linux 3.0 ia-32\r\n+ Debian Linux 3.0 hppa\r\n+ Debian Linux 3.0 arm\r\n+ Debian Linux 3.0 alpha\r\n+ Debian Linux 3.0 \r\n+ MandrakeSoft Linux Mandrake 8.2 \r\n+ S.u.S.E. Linux 8.0 i386\r\n+ S.u.S.E. Linux 8.0 \r\nOpenSSL Project OpenSSL 0.9.6 b-36.8\r\nOpenSSL Project OpenSSL 0.9.6 b\r\n+ MandrakeSoft Linux Mandrake 8.1 ia64\r\n+ MandrakeSoft Linux Mandrake 8.1 \r\n+ OpenBSD OpenBSD 3.1\r\n+ OpenBSD OpenBSD 3.0\r\n+ RedHat Enterprise Linux AS 2.1 IA64\r\n+ RedHat Enterprise Linux AS 2.1\r\n+ RedHat Enterprise Linux ES 2.1 IA64\r\n+ RedHat Enterprise Linux ES 2.1\r\n+ RedHat Enterprise Linux WS 2.1 IA64\r\n+ RedHat Enterprise Linux WS 2.1\r\n+ RedHat Linux 7.3 i386\r\n+ RedHat Linux 7.3 \r\n+ RedHat Linux 7.2 ia64\r\n+ RedHat Linux 7.2 i686\r\n+ RedHat Linux 7.2 i386\r\n+ RedHat Linux 7.2 \r\n+ RedHat Linux Advanced Work Station 2.1 \r\n+ S.u.S.E. Linux 7.3 sparc\r\n+ S.u.S.E. Linux 7.3 ppc\r\n+ S.u.S.E. Linux 7.3 i386\r\n+ S.u.S.E. Linux Connectivity Server \r\n+ S.u.S.E. Linux Database Server 0\r\n+ S.u.S.E. Linux Enterprise Server 7\r\n+ S.u.S.E. Linux Firewall on CD \r\n+ S.u.S.E. Office Server \r\n+ S.u.S.E. SuSE eMail Server III \r\n+ Sun Linux 5.0.7 \r\n+ Sun Linux 5.0.6 \r\n+ Sun Linux 5.0.5 \r\n+ Sun Linux 5.0.3 \r\n+ Sun Linux 5.0 \r\nOpenSSL Project OpenSSL 0.9.6 a\r\n+ Conectiva Linux 7.0 \r\n+ NetBSD NetBSD 1.5.3 \r\n+ NetBSD NetBSD 1.5.2 \r\n+ NetBSD NetBSD 1.5.1 \r\n+ NetBSD NetBSD 1.5 \r\n+ S.u.S.E. Linux 7.2 i386\r\n+ S.u.S.E. Linux 7.1 sparc\r\n+ S.u.S.E. Linux 7.1 ppc\r\n+ S.u.S.E. Linux 7.1 alpha\r\n+ S.u.S.E. Linux 7.1 \r\nOpenSSL Project OpenSSL 0.9.6 \r\n+ Caldera OpenLinux Server 3.1.1 \r\n+ Caldera OpenLinux Server 3.1 \r\n+ Caldera OpenLinux Workstation 3.1.1 \r\n+ Caldera OpenLinux Workstation 3.1 \r\n+ Conectiva Linux 6.0 \r\n+ EnGarde Secure Linux 1.0.1 \r\n+ HP Secure OS software for Linux 1.0 \r\n+ MandrakeSoft Linux Mandrake 8.0 ppc\r\n+ MandrakeSoft Linux Mandrake 8.0 \r\n+ NetBSD NetBSD 1.6 beta\r\n+ NetBSD NetBSD 1.6 \r\n+ NetBSD NetBSD 1.5.3 \r\n+ NetBSD NetBSD 1.5.2 \r\n+ NetBSD NetBSD 1.5.1 \r\n+ NetBSD NetBSD 1.5 \r\n+ OpenBSD OpenBSD 2.9 \r\n+ OpenPKG OpenPKG 1.0 \r\n+ RedHat Linux 7.3 i386\r\n+ RedHat Linux 7.3 \r\n+ RedHat Linux 7.2 i386\r\n+ RedHat Linux 7.2 alpha\r\n+ RedHat Linux 7.1 i386\r\n+ RedHat Linux 7.1 alpha\r\n+ RedHat Linux 7.0 sparc\r\n+ RedHat Linux 7.0 i386\r\n+ RedHat Linux 7.0 alpha\r\n+ Trustix Secure Linux 1.5 \r\n+ Trustix Secure Linux 1.2 \r\n+ Trustix Secure Linux 1.1 \r\nOpenSSL Project OpenSSL 0.9.5 a\r\n+ Debian Linux 3.0 \r\n+ HP Secure OS software for Linux 1.0 \r\n+ Immunix Immunix OS 7.0 \r\n+ Immunix Immunix OS 6.2 \r\n+ MandrakeSoft Corporate Server 1.0.1 \r\n+ MandrakeSoft Linux Mandrake 7.2 \r\n+ MandrakeSoft Linux Mandrake 7.1 \r\n+ MandrakeSoft Single Network Firewall 7.2 \r\n+ OpenBSD OpenBSD 2.8 \r\n+ OpenBSD OpenBSD 2.7 \r\n+ RedHat Linux 7.3 i386\r\n+ RedHat Linux 7.2 ia64\r\n+ RedHat Linux 7.2 i686\r\n+ RedHat Linux 7.2 i386\r\n+ RedHat Linux 7.2 alpha\r\n+ RedHat Linux 7.2 \r\n+ RedHat Linux 7.1 ia64\r\n+ RedHat Linux 7.1 i386\r\n+ RedHat Linux 7.1 alpha\r\n+ RedHat Linux 7.1 \r\n+ RedHat Linux 7.0 i386\r\n+ RedHat Linux 7.0 alpha\r\n+ RedHat Linux 7.0 \r\n+ RedHat Linux 6.2 sparc\r\n+ RedHat Linux 6.2 i386\r\n+ RedHat Linux 6.2 alpha\r\n+ RedHat Linux 6.2 \r\n+ S.u.S.E. Linux 7.0 sparc\r\n+ S.u.S.E. Linux 7.0 ppc\r\n+ S.u.S.E. Linux 7.0 i386\r\n+ S.u.S.E. Linux 7.0 alpha\r\nOpenSSL Project OpenSSL 0.9.5 \r\n+ RedHat Linux 6.2 sparc\r\n+ RedHat Linux 6.2 i386\r\n+ RedHat Linux 6.2 alpha\r\nOpenSSL Project OpenSSL 0.9.4 \r\nOpenSSL Project OpenSSL 0.9.3 \r\nOpenSSL Project OpenSSL 0.9.2 b\r\nOpenSSL Project OpenSSL 0.9.1 c\r\nOpenSSL Project OpenSSL 0.9.8h\r\nOpenSSL Project OpenSSL 0.9.8g\r\nOpenSSL Project OpenSSL 0.9.8f\r\nOpenSSL Project OpenSSL 0.9.8 f\r\nNTP NTP 4.2.5 p150\r\nNTP NTP 4.2.4 p5\r\nGale Gale 0.99\r\nFreeBSD FreeBSD 7.1-STABLE\r\nFreeBSD FreeBSD 7.1 -RELEASE-p1\r\nFreeBSD FreeBSD 7.1 -PRE-RELEASE\r\nFreeBSD FreeBSD 7.0-STABLE\r\nFreeBSD FreeBSD 7.0-RELEASE-p8\r\nFreeBSD FreeBSD 7.0-RELEASE\r\nFreeBSD FreeBSD 7.0 BETA4\r\nFreeBSD FreeBSD 7.0 -RELENG\r\nFreeBSD FreeBSD 7.0 -PRERELEASE\r\nFreeBSD FreeBSD 7.0\r\nFreeBSD FreeBSD 6.4-RELEASE-p2\r\nFreeBSD FreeBSD 6.4 -STABLE\r\nFreeBSD FreeBSD 6.4 -RELEASE\r\nFreeBSD FreeBSD 6.3 -RELENG\r\nFreeBSD FreeBSD 6.3 -RELEASE-p8\r\nFreeBSD FreeBSD 6.3 -RELEASE-p6\r\nFreeBSD FreeBSD 6.3\r\nFreeBSD FreeBSD 6.2 -STABLE\r\nFreeBSD FreeBSD 6.2 -RELENG\r\nFreeBSD FreeBSD 6.2\r\n \r\n\u4e0d\u53d7\u5f71\u54cd\u7cfb\u7edf\r\nSun Grid Engine 6.0\r\nOpenSSL Project OpenSSL 0.9.8 j\r\nNTP NTP 4.2.5 p153\r\nNTP NTP 4.2.4 p6\r\n\n \u5382\u5546\u89e3\u51b3\u65b9\u6848\r\n\u53ef\u53c2\u8003\u5982\u4e0b\u8865\u4e01\u6216\u5347\u7ea7\u7a0b\u5e8f\uff1a\r\nFreeBSD FreeBSD 6.3\r\nFreeBSD openssl6.patch\r\n<a href=http://security.FreeBSD.org/patches/SA-09:02/openssl6.patch target=_blank rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:02/openssl6.patch</a>\r\nUbuntu Ubuntu Linux 7.10 powerpc\r\nUbuntu libcrypto0.9.8-udeb_0.9.8e-5ubuntu3.3_powerpc.udeb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-u target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-u</a> deb_0.9.8e-5ubuntu3.3_powerpc.udeb\r\nUbuntu libssl-dev_0.9.8e-5ubuntu3.3_powerpc.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8 target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8</a> e-5ubuntu3.3_powerpc.deb\r\nUbuntu libssl0.9.8-dbg_0.9.8e-5ubuntu3.3_powerpc.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_ target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_</a> 0.9.8e-5ubuntu3.3_powerpc.deb\r\nUbuntu libssl0.9.8_0.9.8e-5ubuntu3.3_powerpc.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9. target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9.</a> 8e-5ubuntu3.3_powerpc.deb\r\nUbuntu openssl_0.9.8e-5ubuntu3.3_powerpc.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8e-5 target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8e-5</a> ubuntu3.3_powerpc.deb\r\nUbuntu Ubuntu Linux 8.04 LTS powerpc\r\nUbuntu libcrypto0.9.8-udeb_0.9.8g-4ubuntu3.4_powerpc.udeb\r\n<a href=http://ports.ubuntu.com/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g target=_blank rel=external nofollow>http://ports.ubuntu.com/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g</a> -4ubuntu3.4_powerpc.udeb\r\nUbuntu libssl-dev_0.9.8g-4ubuntu3.4_powerpc.deb\r\n<a href=http://ports.ubuntu.com/pool/main/o/openssl/libssl-dev_0.9.8g-4ubuntu3 target=_blank rel=external nofollow>http://ports.ubuntu.com/pool/main/o/openssl/libssl-dev_0.9.8g-4ubuntu3</a> .4_powerpc.deb\r\nUbuntu libssl0.9.8-dbg_0.9.8g-4ubuntu3.4_powerpc.deb\r\n<a href=http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-4ub target=_blank rel=external nofollow>http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-4ub</a> untu3.4_powerpc.deb\r\nUbuntu libssl0.9.8_0.9.8g-4ubuntu3.4_powerpc.deb\r\n<a href=http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8_0.9.8g-4ubuntu target=_blank rel=external nofollow>http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8_0.9.8g-4ubuntu</a> 3.4_powerpc.deb\r\nUbuntu openssl-doc_0.9.8g-4ubuntu3.4_all.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl-doc_0.9. target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl-doc_0.9.</a> 8g-4ubuntu3.4_all.deb\r\nUbuntu openssl_0.9.8g-4ubuntu3.4_powerpc.deb\r\n<a href=http://ports.ubuntu.com/pool/main/o/openssl/openssl_0.9.8g-4ubuntu3.4_ target=_blank rel=external nofollow>http://ports.ubuntu.com/pool/main/o/openssl/openssl_0.9.8g-4ubuntu3.4_</a> powerpc.deb\r\nUbuntu Ubuntu Linux 8.10 powerpc\r\nUbuntu libcrypto0.9.8-udeb_0.9.8g-10.1ubuntu2.1_powerpc.udeb\r\n<a href=http://ports.ubuntu.com/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g target=_blank rel=external nofollow>http://ports.ubuntu.com/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g</a> -10.1ubuntu2.1_powerpc.udeb\r\nUbuntu libssl-dev_0.9.8g-10.1ubuntu2.1_powerpc.deb\r\n<a href=http://ports.ubuntu.com/pool/main/o/openssl/libssl-dev_0.9.8g-10.1ubun target=_blank rel=external nofollow>http://ports.ubuntu.com/pool/main/o/openssl/libssl-dev_0.9.8g-10.1ubun</a> tu2.1_powerpc.deb\r\nUbuntu libssl0.9.8-dbg_0.9.8g-10.1ubuntu2.1_powerpc.deb\r\n<a href=http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-10. target=_blank rel=external nofollow>http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-10.</a> 1ubuntu2.1_powerpc.deb\r\nUbuntu libssl0.9.8_0.9.8g-10.1ubuntu2.1_powerpc.deb\r\n<a href=http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8_0.9.8g-10.1ubu target=_blank rel=external nofollow>http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8_0.9.8g-10.1ubu</a> ntu2.1_powerpc.deb\r\nUbuntu openssl-doc_0.9.8g-10.1ubuntu2.1_all.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl-doc_0.9. target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl-doc_0.9.</a> 8g-10.1ubuntu2.1_all.deb\r\nUbuntu openssl_0.9.8g-10.1ubuntu2.1_powerpc.deb\r\n<a href=http://ports.ubuntu.com/pool/main/o/openssl/openssl_0.9.8g-10.1ubuntu2 target=_blank rel=external nofollow>http://ports.ubuntu.com/pool/main/o/openssl/openssl_0.9.8g-10.1ubuntu2</a> .1_powerpc.deb\r\nUbuntu Ubuntu Linux 8.04 LTS sparc\r\nUbuntu libcrypto0.9.8-udeb_0.9.8g-4ubuntu3.4_sparc.udeb\r\n<a href=http://ports.ubuntu.com/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g target=_blank rel=external nofollow>http://ports.ubuntu.com/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g</a> -4ubuntu3.4_sparc.udeb\r\nUbuntu libssl-dev_0.9.8g-4ubuntu3.4_sparc.deb\r\n<a href=http://ports.ubuntu.com/pool/main/o/openssl/libssl-dev_0.9.8g-4ubuntu3 target=_blank rel=external nofollow>http://ports.ubuntu.com/pool/main/o/openssl/libssl-dev_0.9.8g-4ubuntu3</a> .4_sparc.deb\r\nUbuntu libssl0.9.8-dbg_0.9.8g-4ubuntu3.4_sparc.deb\r\n<a href=http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-4ub target=_blank rel=external nofollow>http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-4ub</a> untu3.4_sparc.deb\r\nUbuntu libssl0.9.8_0.9.8g-4ubuntu3.4_sparc.deb\r\n<a href=http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8_0.9.8g-4ubuntu target=_blank rel=external nofollow>http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8_0.9.8g-4ubuntu</a> 3.4_sparc.deb\r\nUbuntu openssl-doc_0.9.8g-4ubuntu3.4_all.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl-doc_0.9. target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl-doc_0.9.</a> 8g-4ubuntu3.4_all.deb\r\nUbuntu openssl_0.9.8g-4ubuntu3.4_sparc.deb\r\n<a href=http://ports.ubuntu.com/pool/main/o/openssl/openssl_0.9.8g-4ubuntu3.4_ target=_blank rel=external nofollow>http://ports.ubuntu.com/pool/main/o/openssl/openssl_0.9.8g-4ubuntu3.4_</a> sparc.deb\r\nUbuntu Ubuntu Linux 6.06 LTS sparc\r\nUbuntu libcrypto0.9.8-udeb_0.9.8a-7ubuntu0.6_sparc.udeb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-u target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-u</a> deb_0.9.8a-7ubuntu0.6_sparc.udeb\r\nUbuntu libssl-dev_0.9.8a-7ubuntu0.6_sparc.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8 target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8</a> a-7ubuntu0.6_sparc.deb\r\nUbuntu libssl0.9.8-dbg_0.9.8a-7ubuntu0.6_sparc.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_ target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_</a> 0.9.8a-7ubuntu0.6_sparc.deb\r\nUbuntu libssl0.9.8_0.9.8a-7ubuntu0.6_sparc.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9. target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9.</a> 8a-7ubuntu0.6_sparc.deb\r\nUbuntu openssl_0.9.8a-7ubuntu0.6_sparc.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8a-7 target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8a-7</a> ubuntu0.6_sparc.deb\r\nOpenSSL Project OpenSSL 0.9.8g\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nUbuntu Ubuntu Linux 8.04 LTS amd64\r\nUbuntu libcrypto0.9.8-udeb_0.9.8g-4ubuntu3.4_amd64.udeb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-u target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-u</a> deb_0.9.8g-4ubuntu3.4_amd64.udeb\r\nUbuntu libssl-dev_0.9.8g-4ubuntu3.4_amd64.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8 target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8</a> g-4ubuntu3.4_amd64.deb\r\nUbuntu libssl0.9.8-dbg_0.9.8g-4ubuntu3.4_amd64.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_ target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_</a> 0.9.8g-4ubuntu3.4_amd64.deb\r\nUbuntu libssl0.9.8_0.9.8g-4ubuntu3.4_amd64.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9. target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9.</a> 8g-4ubuntu3.4_amd64.deb\r\nUbuntu openssl-doc_0.9.8g-4ubuntu3.4_all.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl-doc_0.9. target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl-doc_0.9.</a> 8g-4ubuntu3.4_all.deb\r\nUbuntu openssl_0.9.8g-4ubuntu3.4_amd64.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g-4 target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g-4</a> ubuntu3.4_amd64.deb\r\nFreeBSD FreeBSD 7.0-RELEASE\r\nFreeBSD openssl.patch\r\n<a href=http://security.FreeBSD.org/patches/SA-09:02/openssl.patch target=_blank rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:02/openssl.patch</a>\r\nUbuntu Ubuntu Linux 7.10 sparc\r\nUbuntu libcrypto0.9.8-udeb_0.9.8e-5ubuntu3.3_sparc.udeb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-u target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-u</a> deb_0.9.8e-5ubuntu3.3_sparc.udeb\r\nUbuntu libssl-dev_0.9.8e-5ubuntu3.3_sparc.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8 target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8</a> e-5ubuntu3.3_sparc.deb\r\nUbuntu libssl0.9.8-dbg_0.9.8e-5ubuntu3.3_sparc.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_ target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_</a> 0.9.8e-5ubuntu3.3_sparc.deb\r\nUbuntu libssl0.9.8_0.9.8e-5ubuntu3.3_sparc.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9. target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9.</a> 8e-5ubuntu3.3_sparc.deb\r\nUbuntu openssl_0.9.8e-5ubuntu3.3_sparc.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8e-5 target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8e-5</a> ubuntu3.3_sparc.deb\r\nFreeBSD FreeBSD 6.4 -STABLE\r\nFreeBSD openssl6.patch\r\n<a href=http://security.FreeBSD.org/patches/SA-09:02/openssl6.patch target=_blank rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:02/openssl6.patch</a>\r\nUbuntu Ubuntu Linux 8.10 sparc\r\nUbuntu libcrypto0.9.8-udeb_0.9.8g-10.1ubuntu2.1_sparc.udeb\r\n<a href=http://ports.ubuntu.com/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g target=_blank rel=external nofollow>http://ports.ubuntu.com/pool/main/o/openssl/libcrypto0.9.8-udeb_0.9.8g</a> -10.1ubuntu2.1_sparc.udeb\r\nUbuntu libssl-dev_0.9.8g-10.1ubuntu2.1_sparc.deb\r\n<a href=http://ports.ubuntu.com/pool/main/o/openssl/libssl-dev_0.9.8g-10.1ubun target=_blank rel=external nofollow>http://ports.ubuntu.com/pool/main/o/openssl/libssl-dev_0.9.8g-10.1ubun</a> tu2.1_sparc.deb\r\nUbuntu libssl0.9.8-dbg_0.9.8g-10.1ubuntu2.1_sparc.deb\r\n<a href=http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-10. target=_blank rel=external nofollow>http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8-dbg_0.9.8g-10.</a> 1ubuntu2.1_sparc.deb\r\nUbuntu libssl0.9.8_0.9.8g-10.1ubuntu2.1_sparc.deb\r\n<a href=http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8_0.9.8g-10.1ubu target=_blank rel=external nofollow>http://ports.ubuntu.com/pool/main/o/openssl/libssl0.9.8_0.9.8g-10.1ubu</a> ntu2.1_sparc.deb\r\nUbuntu openssl-doc_0.9.8g-10.1ubuntu2.1_all.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl-doc_0.9. target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl-doc_0.9.</a> 8g-10.1ubuntu2.1_all.deb\r\nUbuntu openssl_0.9.8g-10.1ubuntu2.1_sparc.deb\r\n<a href=http://ports.ubuntu.com/pool/main/o/openssl/openssl_0.9.8g-10.1ubuntu2 target=_blank rel=external nofollow>http://ports.ubuntu.com/pool/main/o/openssl/openssl_0.9.8g-10.1ubuntu2</a> .1_sparc.deb\r\nFreeBSD FreeBSD 7.1-STABLE\r\nFreeBSD openssl.patch\r\n<a href=http://security.FreeBSD.org/patches/SA-09:02/openssl.patch target=_blank rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:02/openssl.patch</a>\r\nFreeBSD FreeBSD 6.3 -RELENG\r\nFreeBSD openssl6.patch\r\n<a href=http://security.FreeBSD.org/patches/SA-09:02/openssl6.patch target=_blank rel=external nofollow>http://security.FreeBSD.org/patches/SA-09:02/openssl6.patch</a>\r\nOpenSSL Project OpenSSL 0.9.8h\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nUbuntu Ubuntu Linux 8.10 amd64\r\nUbuntu libcrypto0.9.8-udeb_0.9.8g-10.1ubuntu2.1_amd64.udeb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-u target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-u</a> deb_0.9.8g-10.1ubuntu2.1_amd64.udeb\r\nUbuntu libssl-dev_0.9.8g-10.1ubuntu2.1_amd64.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8 target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8</a> g-10.1ubuntu2.1_amd64.deb\r\nUbuntu libssl0.9.8-dbg_0.9.8g-10.1ubuntu2.1_amd64.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_ target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_</a> 0.9.8g-10.1ubuntu2.1_amd64.deb\r\nUbuntu libssl0.9.8_0.9.8g-10.1ubuntu2.1_amd64.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9. target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9.</a> 8g-10.1ubuntu2.1_amd64.deb\r\nUbuntu openssl-doc_0.9.8g-10.1ubuntu2.1_all.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl-doc_0.9. target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl-doc_0.9.</a> 8g-10.1ubuntu2.1_all.deb\r\nUbuntu openssl_0.9.8g-10.1ubuntu2.1_amd64.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g-1 target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g-1</a> 0.1ubuntu2.1_amd64.deb\r\nOpenSSL Project OpenSSL 0.9.8f\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nUbuntu Ubuntu Linux 8.10 i386\r\nUbuntu libcrypto0.9.8-udeb_0.9.8g-10.1ubuntu2.1_i386.udeb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-u target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-u</a> deb_0.9.8g-10.1ubuntu2.1_i386.udeb\r\nUbuntu libssl-dev_0.9.8g-10.1ubuntu2.1_i386.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8 target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8</a> g-10.1ubuntu2.1_i386.deb\r\nUbuntu libssl0.9.8-dbg_0.9.8g-10.1ubuntu2.1_i386.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_ target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_</a> 0.9.8g-10.1ubuntu2.1_i386.deb\r\nUbuntu libssl0.9.8_0.9.8g-10.1ubuntu2.1_i386.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9. target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9.</a> 8g-10.1ubuntu2.1_i386.deb\r\nUbuntu openssl-doc_0.9.8g-10.1ubuntu2.1_all.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl-doc_0.9. target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl-doc_0.9.</a> 8g-10.1ubuntu2.1_all.deb\r\nUbuntu openssl_0.9.8g-10.1ubuntu2.1_i386.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g-1 target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8g-1</a> 0.1ubuntu2.1_i386.deb\r\nOpenSSL Project OpenSSL 0.9.8 f\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nUbuntu Ubuntu Linux 6.06 LTS powerpc\r\nUbuntu libcrypto0.9.8-udeb_0.9.8a-7ubuntu0.6_powerpc.udeb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-u target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libcrypto0.9.8-u</a> deb_0.9.8a-7ubuntu0.6_powerpc.udeb\r\nUbuntu libssl-dev_0.9.8a-7ubuntu0.6_powerpc.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8 target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.8</a> a-7ubuntu0.6_powerpc.deb\r\nUbuntu libssl0.9.8-dbg_0.9.8a-7ubuntu0.6_powerpc.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_ target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8-dbg_</a> 0.9.8a-7ubuntu0.6_powerpc.deb\r\nUbuntu libssl0.9.8_0.9.8a-7ubuntu0.6_powerpc.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9. target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9.</a> 8a-7ubuntu0.6_powerpc.deb\r\nUbuntu openssl_0.9.8a-7ubuntu0.6_powerpc.deb\r\n<a href=http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8a-7 target=_blank rel=external nofollow>http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.8a-7</a> ubuntu0.6_powerpc.deb\r\nOpenSSL Project OpenSSL 0.9.1 c\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.2 b\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.3 \r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.5 a\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.5 \r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.6 j\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.6 d\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.6 c\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.6 b-36.8\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.6 e\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.6 h\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.6 a\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.6 \r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.6 f\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.6 b\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.6 g\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.7 f\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.7 i\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.7 m\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.7 c\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.7 beta2\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.7 beta1\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.7 j\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.7 a\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.7 l\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.7 e\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.7 h\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.7 g\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.7 beta3\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.7 b\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.7 k\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.8 a\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.8 i\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.8 c\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.8 b\r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>\r\nOpenSSL Project OpenSSL 0.9.8 \r\nOpenSSL Project openssl-0.9.8j.tar.gz\r\n<a href=http://www.openssl.org/source/openssl-0.9.8j.tar.gz target=_blank rel=external nofollow>http://www.openssl.org/source/openssl-0.9.8j.tar.gz</a>", "modified": "2009-01-08T00:00:00", "published": "2009-01-08T00:00:00", "href": "https://www.seebug.org/vuldb/ssvid-4636", "id": "SSV:4636", "type": "seebug", "title": "OpenSSL 'EVP_VerifyFinal'\u51fd\u6570\u7b7e\u540d\u9a8c\u8bc1\u6f0f\u6d1e", "sourceData": "", "sourceHref": "", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}], "suse": [{"lastseen": "2016-09-04T12:23:22", "bulletinFamily": "unix", "description": "The OpenSSL certificate checking routines EVP_VerifyFinal can return negative values and 0 on failure. In some places negative values were not checked and considered successful verification. Prior to this update it was possible to bypass the certification chain checks of openssl.\n#### Solution\nThere is no known workaround, please install the update packages.", "modified": "2009-01-23T16:31:52", "published": "2009-01-23T16:31:52", "id": "SUSE-SA:2009:006", "href": "http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00008.html", "type": "suse", "title": "SSL certificate checking bypass in openssl", "cvss": {"score": 5.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}]}
