13 matches found
SUSE: Security Advisory (SUSE-SU-2016:1278-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2016:2094-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2016:1568-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Network Time Protocol ntpd Reference Clock Impersonation Vulnerability(CVE-2016-1551)
SUMMARY ntpd relies on the underlying operating system to protect it from requests that impersonate reference clocks. Because reference clocks are treated like other peers and stored in the same structure, any packet with a source ip address of a reference clock 127.127.1.1 for example that reach...
Juniper Junos Space < 17.1R1 Multiple Vulnerabilities (JSA10826)
According to its self-reported version number, the version of Junos Space running on the remote device is 17.1R1, and is therefore affected by multiple vulnerabilities. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid104100; scriptversion"1.7";...
CVE-2016-1551
CVE-2016-1551 affects ntpd (NTP 4.2.8p3 and NTPsec a5fb34b9…). The flaw arises because reference clocks are stored with regular peers; if a system lacks martian-filtering, a packet with a reference-clock source (e.g., 127.127.1.1) reaching receive() can be treated as a trusted peer, enabling an a...
Vulnerabilities in NTP affect AIX,Vulnerabilities in NTP affect VIOS
ntpadvisory7.asc: Version 2 Version 2 Issued: Tue Sep 13 08:23:22 CDT 2016 Version 2 Changes: Changed the impacted upper level filesets listed for NTPv4. The new levels should match the prereqs as listed in the iFixes. IBM SECURITY ADVISORY First Issued: Tue Sep 6 09:07:16 CDT 2016 |Updated: Tue...
SUSE SLES10 Security Update : ntp (SUSE-SU-2016:1912-1)
NTP was updated to version 4.2.8p8 to fix several security issues and to ensure the continued maintainability of the package. These security issues were fixed : CVE-2016-4953: Bad authentication demobilized ephemeral associations bsc982065. CVE-2016-4954: Processing spoofed server packets...
SUSE: Security Advisory for ntp (SUSE-SU-2016:1568-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for ntp (openSUSE-SU-2016:1329-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update for ntp (important)
This update for ntp to 4.2.8p7 fixes the following issues: CVE-2016-1547, bsc977459: Validate crypto-NAKs, AKA: CRYPTO-NAK DoS. CVE-2016-1548, bsc977461: Interleave-pivot CVE-2016-1549, bsc977451: Sybil vulnerability: ephemeral association attack. CVE-2016-1550, bsc977464: Improve NTP security...
SUSE SLED12 / SLES12 Security Update : ntp (SUSE-SU-2016:1291-1)
This update for ntp to 4.2.8p7 fixes the following issues : - CVE-2016-1547, bsc977459: Validate crypto-NAKs, AKA: CRYPTO-NAK DoS. - CVE-2016-1548, bsc977461: Interleave-pivot - CVE-2016-1549, bsc977451: Sybil vulnerability: ephemeral association attack. - CVE-2016-1550, bsc977464: Improve NTP...
ntp -- multiple vulnerabilities
Network Time Foundation reports: NTF's NTP Project has been notified of the following low- and medium-severity vulnerabilities that are fixed in ntp-4.2.8p7, released on Tuesday, 26 April 2016: Bug 3020 / CVE-2016-1551: Refclock impersonation vulnerability, AKA: refclock-peering. Reported by Matt...