[SECURITY] Fedora 32 Update: ntp-4.2.8p15-1.fc32

The Network Time Protocol NTP is used to synchronize a computer's time with another reference time source. This package includes ntpd a daemon which continuously adjusts system time and utilities used to query and configure the ntpd daemon. Perl scripts are in the ntp-perl package, ntpdate is in...

Fedora: Security Advisory for ntp (FEDORA-2020-a0b39d58db)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

SUSE-SU-2020:14415-1 Security update for ntp

This update for ntp fixes the following issues: ntp was updated to 4.2.8p15 - CVE-2020-11868: Fixed an issue which a server mode packet with spoofed source address frequently send to the client ntpd could have caused denial of service bsc1169740. - CVE-2018-8956: Fixed an issue which could have...

CVE-2020-14059

An issue was discovered in Squid 5.x before 5.0.3. Due to an Incorrect Synchronization, a Denial of Service can occur when processing objects in an SMP cache because of an Ipc::Mem::PageStack::pop ABA problem during access to the memory page/slot management list...

CVE-2020-14059

An issue was discovered in Squid 5.x before 5.0.3. Due to an Incorrect Synchronization, a Denial of Service can occur when processing objects in an SMP cache because of an Ipc::Mem::PageStack::pop ABA problem during access to the memory page/slot management list...

Design/Logic Flaw

An issue was discovered in Squid 5.x before 5.0.3. Due to an Incorrect Synchronization, a Denial of Service can occur when processing objects in an SMP cache because of an Ipc::Mem::PageStack::pop ABA problem during access to the memory page/slot management list...

CVE-2020-14059

An issue was discovered in Squid 5.x before 5.0.3. Due to an Incorrect Synchronization, a Denial of Service can occur when processing objects in an SMP cache because of an Ipc::Mem::PageStack::pop ABA problem during access to the memory page/slot management list...

CVE-2020-14059

Squid 5.x prior to 5.0.3 is affected by CVE-2020-14059 due to an incorrect synchronization in the SMP cache, causing a Denial of Service via Ipc::Mem::PageStack::pop ABA during memory page/slot management. Affected component is the memory/page management list, with exploitation leading to a crash...

CVE-2020-14059

An issue was discovered in Squid 5.x before 5.0.3. Due to an Incorrect Synchronization, a Denial of Service can occur when processing objects in an SMP cache because of an Ipc::Mem::PageStack::pop ABA problem during access to the memory page/slot management list...

CVE-2020-14059

A flaw was found in squid. A denial of service attack is possible when processing objects in an SMP cache due to an incorrect synchronization. The highest threat from this vulnerability is to system availability...

The vulnerability of the system log processing mechanism of the Cisco Identity Services Engine (ISE) platform allows a perpetrator to trigger a service failure.

The vulnerability of the system log processing mechanism of the Cisco Identity Services Engine ISE management platform is caused by synchronization errors when using a shared resource. Exploiting this vulnerability can allow a malicious actor to cause service failures...

Moderate: Red Hat Security Advisory: ntp security update

An update for ntp is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

The vulnerability of the init_tmp function (TeeJee.FileSystem.vala) in the Timeshift system recovery application, which allows a hacker to execute arbitrary code.

The vulnerability of the inittmp function TeeJee.FileSystem.vala in the Timeshift system recovery application is caused by synchronization errors when using shared resources. Exploiting this vulnerability allows an attacker to execute arbitrary code...

CVE-2018-8956

ntpd in ntp 4.2.8p10, 4.2.8p11, 4.2.8p12 and 4.2.8p13 allow remote attackers to prevent a broadcast client from synchronizing its clock with a broadcast NTP server via soofed mode 3 and mode 5 packets. The attacker must either be a part of the same broadcast network or control a slave in that...

Sync Breeze Enterprise Denial of Service Vulnerability

Sync Breeze Enterprise is a file synchronization utility that allows you to synchronize and manage the disk files of your networked computers, mainly used to categorize, save and manage files. A denial of service vulnerability exists in Sync Breeze Enterprise. An attacker can exploit the...

EulerOS 2.0 SP2 : ntp (EulerOS-SA-2020-1684)

According to the version of the ntp packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows an off-path attacker to block unauthenticated synchronization via a server mode packet wit...

The vulnerability of the 389 Directory Server catalog service server arises from synchronization errors when using a shared resource, allowing a malicious actor to cause a service failure.

The vulnerability of the 389 Directory Server catalog service server arises due to synchronization errors when using a shared resource. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures...

Description of the security update for SharePoint Server 2019: June 9, 2020

Description of the security update for SharePoint Server 2019: June 9, 2020 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see the followin...

The vulnerabilities of PDF viewing and editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader 2017, Adobe Acrobat 2015, Adobe Acrobat Reader 2015 are caused by synchronization errors when using a shared resource. This vulnerability allows attackers to circumvent existing security restrictions.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2017, Adobe Acrobat Reader 2017, and Adobe Acrobat 2015 are caused by synchronization errors when using a shared resource. Exploiting these...

DEBIAN-CVE-2020-13817

ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows remote attackers to cause a denial of service daemon exit or system time change by predicting transmit timestamps for use in spoofed packets. The victim must be relying on unauthenticated IPv4 time sources. There must be an off-path...