36 matches found
SUSE CVE-2009-0021
NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to...
Solaris 10 (x86) : 139501-02
SunOS 5.10x86: openssl patch. Date this patch was last updated by Sun : Feb/24/09 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
Oracle Linux 5 : ntp (ELSA-2009-0046)
The remote Oracle Linux 5 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2009-0046 advisory. 4.2.2p1-9.el53.1 - fix check for malformed signatures 479698, CVE-2009-0021 Tenable has extracted the preceding description block directly from the Oracle Linux...
Slackware: Security Advisory (SSA:2009-014-03)
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Scientific Linux Security Update : ntp on SL4.x, SL5.x i386/x86_64
A flaw was discovered in the way the ntpd daemon checked the return value of the OpenSSL EVPVerifyFinal function. On systems using NTPv4 authentication, this could lead to an incorrect verification of cryptographic signatures, allowing time-spoofing attacks. CVE-2009-0021 Note: This issue only...
CentOS Update for ntp CESA-2009:0046 centos5 i386
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
CentOS Update for ntp CESA-2009:0046 centos5 i386
Check for the Version of ntp OpenVAS Vulnerability Test CentOS Update for ntp CESA-2009:0046 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora Core 10 FEDORA-2009-13121 (ntp)
The remote host is missing an update to ntp announced via advisory FEDORA-2009-13121. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
SuSE9 Security Update : xntp, xntp-doc (YOU Patch Number 12338)
This update of ntp improves a check for the return value of openssl's function EVPVerifyFinal. CVE-2009-0021 Additionally a fix non-security for starting ntpd with the option -x was added. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...
openSUSE Security Update : ntp (ntp-439)
This update of ntp improves a check for the return value of openssl's function EVPVerifyFinal. CVE-2009-0021 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update ntp-439. The text description of th...
openSUSE Security Update : ntp (ntp-439)
This update of ntp improves a check for the return value of openssl's function EVPVerifyFinal. CVE-2009-0021 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update ntp-439. The text description of th...
Fedora Core 10 FEDORA-2009-5273 (ntp)
The remote host is missing an update to ntp announced via advisory FEDORA-2009-5273. OpenVAS Vulnerability Test $Id: fcore20095273.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-5273 ntp Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...
Fedora Core 10 FEDORA-2009-5273 (ntp)
The remote host is missing an update to ntp announced via advisory FEDORA-2009-5273. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
Fedora Core 9 FEDORA-2009-5275 (ntp)
The remote host is missing an update to ntp announced via advisory FEDORA-2009-5275. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
Solaris 10 (x86) : 139501-02
SunOS 5.10x86: openssl patch. Date this patch was last updated by Sun : Feb/24/09 %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/10/24. C Tenable Network Security, Inc. if ! definedfunc"bnrando...
Fedora 10 : ntp-4.2.4p6-1.fc10 (2009-0544)
This update fixes CVE-2009-0021: NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA...
Ubuntu 6.06 LTS / 7.10 / 8.04 LTS / 8.10 : ntp vulnerability (USN-705-1)
It was discovered that NTP did not properly perform signature verification. A remote attacker could exploit this to bypass certificate validation via a malformed SSL/TLS signature. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security...
SuSE Security Summary SUSE-SR:2009:005
The remote host is missing updates announced in advisory SUSE-SR:2009:005. SuSE Security Summaries are short on detail when it comes to the names of packages affected by a particular bug. Because of this, while this test will detect out of date packages, it cannot tell you what bugs impact which...
openSUSE 10 Security Update : xntp (xntp-5936)
This update of ntp improves a check for the return value of openssl's function EVPVerifyFinal. CVE-2009-0021 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update xntp-5936. The text description of...
RedHat Security Advisory RHSA-2009:0046
The remote host is missing updates announced in advisory RHSA-2009:0046. The Network Time Protocol NTP is used to synchronize a computer's time with a referenced time source. A flaw was discovered in the way the ntpd daemon checked the return value of the OpenSSL EVPVerifyFinal function. On syste...