8 matches found
Arbitrary Code Execution
ntpd is vulnerable to arbitrary code execution. A buffer overflow flaw was discovered in the ntpd daemon's NTPv4 authentication code. If ntpd was configured to use public key cryptography for NTP packet authentication, a remote attacker could use this flaw to send a specially-crafted request pack...
CentOS 4 : ntp (CESA-2009:1040)
An updated ntp package that fixes two security issues is now available for Red Hat Enterprise Linux 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. The Network Time Protocol NTP is used to synchronize a computer's time with a referenced time...
Scientific Linux Security Update : ntp on SL4.x, SL5.x i386/x86_64
A flaw was discovered in the way the ntpd daemon checked the return value of the OpenSSL EVPVerifyFinal function. On systems using NTPv4 authentication, this could lead to an incorrect verification of cryptographic signatures, allowing time-spoofing attacks. CVE-2009-0021 Note: This issue only...
CentOS 4 / 5 : ntp (CESA-2009:0046)
Updated ntp packages to correct a security issue are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Network Time Protocol NTP is used to synchronize a computer's time with a referenced ti...
Mandriva Linux Security Advisory : ntp (MDVSA-2009:309)
Multiple vulnerabilities has been found and corrected in ntp : Requesting peer information from a malicious remote time server may lead to an unexpected application termination or arbitrary code execution CVE-2009-0159. A buffer overflow flaw was discovered in the ntpd daemon's NTPv4 authenticati...
Critical: Red Hat Security Advisory: ntp security update
An updated ntp package that fixes two security issues is now available for Red Hat Enterprise Linux 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. The Network Time Protocol NTP is used to synchronize a computer's time with a referenced time...
Moderate: Red Hat Security Advisory: ntp security update
Updated ntp packages to correct a security issue are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Network Time Protocol NTP is used to synchronize a computer's time with a referenced ti...
RHEL 4 / 5 : ntp (RHSA-2009:0046)
Updated ntp packages to correct a security issue are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Network Time Protocol NTP is used to synchronize a computer's time with a referenced ti...