Test Kennung:	1.3.6.1.4.1.25623.1.0.703629
Kategorie:	Debian Local Security Checks
Titel:	Debian Security Advisory DSA 3629-1 (ntp - security update)
Zusammenfassung:	Several vulnerabilities were discovered;in the Network Time Protocol daemon and utility programs:;;CVE-2015-7974;Matt Street discovered that insufficient key validation allows;impersonation attacks between authenticated peers.;;CVE-2015-7977CVE-2015-7978Stephen Gray discovered that a NULL pointer dereference;and a buffer overflow in the handling of ntpdc reslist;commands may;result in denial of service.;;CVE-2015-7979;Aanchal Malhotra discovered that if NTP is configured for broadcast;mode, an attacker can send malformed authentication packets which;break associations with the server for other broadcast clients.;;CVE-2015-8138;Matthew van Gundy and Jonathan Gardner discovered that missing;validation of origin timestamps in ntpd clients may result in denial;of service.;;CVE-2015-8158;Jonathan Gardner discovered that missing input sanitising in ntpq;may result in denial of service.;;CVE-2016-1547;Stephen Gray and Matthew van Gundy discovered that incorrect handling;of crypto NAK packets may result in denial of service.;;CVE-2016-1548;Jonathan Gardner and Miroslav Lichvar discovered that ntpd clients;could be forced to change from basic client/server mode to interleaved;symmetric mode, preventing time synchronisation.;;CVE-2016-1550;Matthew van Gundy, Stephen Gray and Loganaden Velvindron discovered;that timing leaks in the packet authentication code could result;in recovery of a message digest.;;CVE-2016-2516Yihan Lian discovered that duplicate IPs on unconfig;directives will;trigger an assert.;;CVE-2016-2518;Yihan Lian discovered that an OOB memory access could potentially;crash ntpd.
Beschreibung:	Summary: Several vulnerabilities were discovered in the Network Time Protocol daemon and utility programs: CVE-2015-7974 Matt Street discovered that insufficient key validation allows impersonation attacks between authenticated peers. CVE-2015-7977CVE-2015-7978Stephen Gray discovered that a NULL pointer dereference and a buffer overflow in the handling of ntpdc reslist commands may result in denial of service. CVE-2015-7979 Aanchal Malhotra discovered that if NTP is configured for broadcast mode, an attacker can send malformed authentication packets which break associations with the server for other broadcast clients. CVE-2015-8138 Matthew van Gundy and Jonathan Gardner discovered that missing validation of origin timestamps in ntpd clients may result in denial of service. CVE-2015-8158 Jonathan Gardner discovered that missing input sanitising in ntpq may result in denial of service. CVE-2016-1547 Stephen Gray and Matthew van Gundy discovered that incorrect handling of crypto NAK packets may result in denial of service. CVE-2016-1548 Jonathan Gardner and Miroslav Lichvar discovered that ntpd clients could be forced to change from basic client/server mode to interleaved symmetric mode, preventing time synchronisation. CVE-2016-1550 Matthew van Gundy, Stephen Gray and Loganaden Velvindron discovered that timing leaks in the packet authentication code could result in recovery of a message digest. CVE-2016-2516Yihan Lian discovered that duplicate IPs on unconfig directives will trigger an assert. CVE-2016-2518 Yihan Lian discovered that an OOB memory access could potentially crash ntpd. Affected Software/OS: ntp on Debian Linux Solution: For the stable distribution (jessie), these problems have been fixed in version 1:4.2.6.p5+dfsg-7+deb8u2. For the testing distribution (stretch), these problems have been fixed in version 1:4.2.8p7+dfsg-1. For the unstable distribution (sid), these problems have been fixed in version 1:4.2.8p7+dfsg-1. We recommend that you upgrade your ntp packages. CVSS Score: 7.1 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2015-7974 BugTraq ID: 81960 http://www.securityfocus.com/bid/81960 Debian Security Information: DSA-3629 (Google Search) http://www.debian.org/security/2016/dsa-3629 FreeBSD Security Advisory: FreeBSD-SA-16:16 https://security.FreeBSD.org/advisories/FreeBSD-SA-16:09.ntp.asc https://security.gentoo.org/glsa/201607-15 http://www.talosintel.com/reports/TALOS-2016-0071/ https://us-cert.cisa.gov/ics/advisories/icsa-21-103-11 RedHat Security Advisories: RHSA-2016:2583 http://rhn.redhat.com/errata/RHSA-2016-2583.html http://www.securitytracker.com/id/1034782 Common Vulnerability Exposure (CVE) ID: CVE-2015-7977 BugTraq ID: 81815 http://www.securityfocus.com/bid/81815 CERT/CC vulnerability note: VU#718152 https://www.kb.cert.org/vuls/id/718152 Cisco Security Advisory: 20160120 Multiple Vulnerabilities in Network Time Protocol Daemon Affecting Cisco Products - January 2016 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160127-ntpd http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177507.html http://lists.fedoraproject.org/pipermail/package-announce/2016-January/176434.html RedHat Security Advisories: RHSA-2016:0780 http://rhn.redhat.com/errata/RHSA-2016-0780.html SuSE Security Announcement: SUSE-SU-2016:1175 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00059.html SuSE Security Announcement: SUSE-SU-2016:1177 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00060.html SuSE Security Announcement: SUSE-SU-2016:1247 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00020.html SuSE Security Announcement: SUSE-SU-2016:1311 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00048.html SuSE Security Announcement: SUSE-SU-2016:1912 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00026.html SuSE Security Announcement: SUSE-SU-2016:2094 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00042.html SuSE Security Announcement: openSUSE-SU-2016:1292 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00038.html SuSE Security Announcement: openSUSE-SU-2016:1423 (Google Search) http://lists.opensuse.org/opensuse-updates/2016-05/msg00114.html http://www.ubuntu.com/usn/USN-3096-1 Common Vulnerability Exposure (CVE) ID: CVE-2015-7978 BugTraq ID: 81962 http://www.securityfocus.com/bid/81962 Common Vulnerability Exposure (CVE) ID: CVE-2015-7979 BugTraq ID: 81816 http://www.securityfocus.com/bid/81816 RedHat Security Advisories: RHSA-2016:1141 https://access.redhat.com/errata/RHSA-2016:1141 RedHat Security Advisories: RHSA-2016:1552 http://rhn.redhat.com/errata/RHSA-2016-1552.html Common Vulnerability Exposure (CVE) ID: CVE-2015-8138 BugTraq ID: 81811 http://www.securityfocus.com/bid/81811 Cisco Security Advisory: 20160428 Multiple Vulnerabilities in Network Time Protocol Daemon Affecting Cisco Products: April 2016 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160428-ntpd Cisco Security Advisory: 20161123 Multiple Vulnerabilities in Network Time Protocol Daemon Affecting Cisco Products: November 2016 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161123-ntpd RedHat Security Advisories: RHSA-2016:0063 http://rhn.redhat.com/errata/RHSA-2016-0063.html Common Vulnerability Exposure (CVE) ID: CVE-2015-8158 BugTraq ID: 81814 http://www.securityfocus.com/bid/81814 Common Vulnerability Exposure (CVE) ID: CVE-2016-1547 BugTraq ID: 88276 http://www.securityfocus.com/bid/88276 https://security.FreeBSD.org/advisories/FreeBSD-SA-16:16.ntp.asc http://www.talosintelligence.com/reports/TALOS-2016-0081/ http://www.securitytracker.com/id/1035705 Common Vulnerability Exposure (CVE) ID: CVE-2016-1548 BugTraq ID: 88264 http://www.securityfocus.com/bid/88264 Bugtraq: 20160429 [slackware-security] ntp (SSA:2016-120-01) (Google Search) http://www.securityfocus.com/archive/1/538233/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/538233/100/0/threaded https://www.debian.org/security/2016/dsa-3629 http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184669.html http://lists.fedoraproject.org/pipermail/package-announce/2016-May/183647.html http://packetstormsecurity.com/files/136864/Slackware-Security-Advisory-ntp-Updates.html http://www.talosintelligence.com/reports/TALOS-2016-0082/ https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11 https://www.talosintelligence.com/vulnerability_reports/TALOS-2016-0082 SuSE Security Announcement: SUSE-SU-2016:1278 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00034.html SuSE Security Announcement: SUSE-SU-2016:1291 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00037.html SuSE Security Announcement: SUSE-SU-2016:1471 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00001.html SuSE Security Announcement: SUSE-SU-2016:1568 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00020.html SuSE Security Announcement: openSUSE-SU-2016:1329 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00052.html Common Vulnerability Exposure (CVE) ID: CVE-2016-1550 BugTraq ID: 88261 http://www.securityfocus.com/bid/88261 http://www.talosintelligence.com/reports/TALOS-2016-0084/ https://www.talosintelligence.com/vulnerability_reports/TALOS-2016-0084 Common Vulnerability Exposure (CVE) ID: CVE-2016-2516 BugTraq ID: 88180 http://www.securityfocus.com/bid/88180 Common Vulnerability Exposure (CVE) ID: CVE-2016-2518 BugTraq ID: 88226 http://www.securityfocus.com/bid/88226
Copyright	Copyright (C) 2016 Greenbone Networks GmbH http://greenbone.net

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.