ID de Prueba:	1.3.6.1.4.1.25623.1.1.2.2019.1938
Categoría:	Huawei EulerOS Local Security Checks
Título:	Huawei EulerOS: Security Advisory for ntp (EulerOS-SA-2019-1938)
Resumen:	The remote host is missing an update for the Huawei EulerOS 'ntp' package(s) announced via the EulerOS-SA-2019-1938 advisory.
Descripción:	Summary: The remote host is missing an update for the Huawei EulerOS 'ntp' package(s) announced via the EulerOS-SA-2019-1938 advisory. Vulnerability Insight: NTP through 4.2.8p12 has a NULL Pointer Dereference.(CVE-2019-8936) Buffer overflow in the legacy Datum Programmable Time Server (DPTS) refclock driver in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows local users to have unspecified impact via a crafted /dev/datum device.(CVE-2017-6462) NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote attackers to cause a denial of service (ntpd crash) via a malformed mode configuration directive.(CVE-2017-6464) NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote authenticated users to cause a denial of service (daemon crash) via an invalid setting in a :config directive, related to the unpeer option.(CVE-2017-6463) Affected Software/OS: 'ntp' package(s) on Huawei EulerOS Virtualization for ARM 64 3.0.2.0. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2017-6462 BugTraq ID: 97045 http://www.securityfocus.com/bid/97045 FreeBSD Security Advisory: FreeBSD-SA-19:04 https://security.FreeBSD.org/advisories/FreeBSD-SA-17:03.ntp.asc RedHat Security Advisories: RHSA-2017:3071 https://access.redhat.com/errata/RHSA-2017:3071 RedHat Security Advisories: RHSA-2018:0855 https://access.redhat.com/errata/RHSA-2018:0855 http://www.securitytracker.com/id/1038123 https://usn.ubuntu.com/3707-2/ Common Vulnerability Exposure (CVE) ID: CVE-2017-6463 BugTraq ID: 97049 http://www.securityfocus.com/bid/97049 Common Vulnerability Exposure (CVE) ID: CVE-2017-6464 BugTraq ID: 97050 http://www.securityfocus.com/bid/97050 Common Vulnerability Exposure (CVE) ID: CVE-2019-8936 Bugtraq: 20190515 FreeBSD Security Advisory FreeBSD-SA-19:04.ntp (Google Search) https://seclists.org/bugtraq/2019/May/39 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JBGXY7OKWOLT6X6JAPVZRFEP4FLCGGST/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KQDNHNYOJK2SRSGO23GQ2RXTOUY2HLNN/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2NVS2CSG2TQ663CXOZZUJN4STQPMENNP/ https://security.FreeBSD.org/advisories/FreeBSD-SA-19:04.ntp.asc https://security.gentoo.org/glsa/201903-15 http://packetstormsecurity.com/files/152915/FreeBSD-Security-Advisory-FreeBSD-SA-19-04.ntp.html http://support.ntp.org/bin/view/Main/SecurityNotice SuSE Security Announcement: openSUSE-SU-2019:1143 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00032.html SuSE Security Announcement: openSUSE-SU-2019:1158 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00036.html https://usn.ubuntu.com/4563-1/
Copyright	Copyright (C) 2020 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.