27 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-6462
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow in the legacy Datum Programmable Time Server DPTS refclock driver in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows local users to have...
Mageia: Security Advisory (MGASA-2017-0134)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for ntp (EulerOS-SA-2017-1125)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security Bulletin: Multiple Security Vulnerabilities have been fixed in IBM Security Privileged Identity Manager Appliance.
Summary Multiple security vulnerabilities have been identified and fixed in the IBM Security Privileged Identity Manager Appliance. Vulnerability Details CVEID: CVE-2018-1049 DESCRIPTION: Systemd is vulnerable to a denial of service, caused by a race condition between .mount and .automount units....
NewStart CGSL MAIN 4.05 : ntp Multiple Vulnerabilities (NS-SA-2019-0127)
The remote NewStart CGSL host, running version MAIN 4.05, has ntp packages installed that are affected by multiple vulnerabilities: - A vulnerability was found in NTP, in the parsing of packets from the /dev/datum device. A malicious device could send crafted messages, causing ntpd to crash...
Security Bulletin: IBM Security Access Manager Appliance is affected by NTP vulnerabilities (CVE-2017-6462, CVE-2017-6463, CVE-2017-6464)
Summary IBM Security Access Manager Appliance has addressed the following vulnerabilities. Vulnerability Details CVEID: CVE-2017-6464 DESCRIPTION: NTP is vulnerable to a denial of service. A remote authenticated attacker could exploit this vulnerability using a malformed mode configuration...
Scientific Linux Security Update : ntp on SL7.x x86_64 (20180410)
Security Fixes : - ntp: Authenticated DoS via Malicious Config Option CVE-2017-6463 - ntp: Denial of Service via Malformed Config CVE-2017-6464 - ntp: Buffer Overflow in DPTS Clock CVE-2017-6462 Additional Changes : C Tenable Network Security, Inc. The descriptive text is C Scientific Linux...
Oracle Linux 7 : ntp (ELSA-2018-0855)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-0855 advisory. - fix buffer overflow in datum refclock driver CVE-2017-6462 - fix crash with invalid unpeer command CVE-2017-6463 - fix potential crash with invalid...
F5 Networks BIG-IP : NTP vulnerability (K07082049)
Buffer overflow in the legacy Datum Programmable Time Server DPTS refclock driver in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows local users to have unspecified impact via a crafted /dev/datum device. CVE-2017-6462 C Tenable Network Security, Inc. The descriptive text and package checks in...
RedHat Update for ntp RHSA-2017:3071-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CentOS Update for ntp CESA-2017:3071 centos6
Check the version of ntp SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882794";...
Moderate: Red Hat Security Advisory: ntp security update
An update for ntp is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...
AIX NTP v4 Advisory : ntp_advisory9.asc (IV96311) (IV96312)
The version of NTP installed on the remote AIX host is affected by the following vulnerabilities : - Multiple stack-based buffer overflow conditions exist in various wrappers around the ctlputdata function within file ntpd/ntpcontrol.c due to improper validation of certain input from the ntp.conf...
AIX NTP v3 Advisory : ntp_advisory9.asc (IV96305) (IV96306) (IV96307) (IV96308) (IV96309) (IV96310)
The version of NTP installed on the remote AIX host is affected by the following vulnerabilities : - An out-of-bounds write error exists in the mx4200send function within file ntpd/refclockmx4200.c due to improper handling of the return value of the snprintf and vsnprintf functions. An...
Fedora 26 : ntp (2017-20d54b2782)
Security fix for CVE-2017-6464 CVE-2017-6462 CVE-2017-6463 CVE-2017-6458 CVE-2017-6451 CVE-2017-6460 CVE-2016-9042. ---- This update improves the default configuration file to use the pool directive. It also replaces the ntpstat program with a shell script that uses the ntpq program instead of...
EulerOS 2.0 SP1 : ntp (EulerOS-SA-2017-1124)
According to the versions of the ntp packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - ntpq in NTP before 4.2.8p7 allows remote attackers to obtain origin timestamps and then impersonate peers via unspecified...
There are multiple vulnerabilities in NTPv3 and NTPv4 that impact AIX,There are multiple vulnerabilities in NTPv3 and NTPv4 that impact AIX.,There are multiple vulnerabilities in NTPv3 and NTPv4 that impact VIOS
IBM SECURITY ADVISORY First Issued: Thu Jul 6 14:53:51 CDT 2017 |Updated: Mon Nov 13 14:32:25 CST 2017 |Update 3: Clarified that AIX 7100-04-05, 7200-00-05, and 7200-01-03 are | impacted. An additional iFix is provided for AIX 7100-04-05. The | iFixes already provided for 7200-00 and 7200-01 cove...
Ubuntu 14.04 LTS / 16.04 LTS : NTP vulnerabilities (USN-3349-1)
The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3349-1 advisory. Yihan Lian discovered that NTP incorrectly handled certain large request data values. A remote attacker could possibly use this issue to caus...
USN-3349-1: NTP vulnerabilities
Yihan Lian discovered that NTP incorrectly handled certain large request data values. A remote attacker could possibly use this issue to cause NTP to crash, resulting in a denial of service. This issue only affected Ubuntu 16.04 LTS. CVE-2016-2519 Miroslav Lichvar discovered that NTP incorrectly...
Amazon Linux AMI : ntp (ALAS-2017-816)
Denial of Service via Malformed Config : A vulnerability was discovered in the NTP server's parsing of configuration directives. A remote, authenticated attacker could cause ntpd to crash by sending a crafted message.CVE-2017-6464 Potential Overflows in ctlput functions : A vulnerability was foun...