Bugs fixes in "ntp"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2016-7429 | NTP before 4.2.8p9 changes the peer structure to the interface it receives the response from a source, which allows remote attackers to cause a denia | 2017-07-05 |
| CVE | CVE-2016-7428 | ntpd in NTP before 4.2.8p9 allows remote attackers to cause a denial of service (reject broadcast mode packets) via the poll interval in a broadcast | 2017-07-05 |
| CVE | CVE-2016-7427 | The broadcast mode replay prevention functionality in ntpd in NTP before 4.2.8p9 allows remote attackers to cause a denial of service (reject broadca | 2017-07-05 |
| CVE | CVE-2016-7426 | NTP before 4.2.8p9 rate limits responses received from the configured sources when rate limiting for all associations is enabled, which allows remote | 2017-07-05 |
| CVE | CVE-2016-2519 | ntpd in NTP before 4.2.8p7 and 4.3.x before 4.3.92 allows remote attackers to cause a denial of service (ntpd abort) by a large request data value, w | 2017-07-05 |
| Launchpad | 1656801 | ntp: changing the default config from server to pool broke the dhcp hook | 2017-04-13 |
| Launchpad | 1656801 | ntp: changing the default config from server to pool broke the dhcp hook | 2017-04-05 |
| CVE | CVE-2016-4956 | ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (interleaved-mode transition and time change) via a spoofed broad | 2016-10-05 |
| CVE | CVE-2016-4955 | ntpd in NTP 4.x before 4.2.8p8, when autokey is enabled, allows remote attackers to cause a denial of service (peer-variable clearing and association | 2016-10-05 |
| CVE | CVE-2016-4954 | The process_packet function in ntp_proto.c in ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (peer-variable modi | 2016-10-05 |
| CVE | CVE-2016-2518 | Crafted addpeer with hmode > 7 causes out-of-bounds reference | 2016-10-05 |
| CVE | CVE-2016-2516 | Duplicate IPs on unconfig directives will cause an assertion failure | 2016-10-05 |
| CVE | CVE-2016-1550 | Timing attack for authenticated packets | 2016-10-05 |
| CVE | CVE-2016-1548 | Change the time of an ntpd client or deny service to an ntpd client by forcing it to change from basic client/server mode to interleaved symmetric mo | 2016-10-05 |
| CVE | CVE-2016-0727 | NTP statsdir cleanup cronjob insecure | 2016-10-05 |
| CVE | CVE-2015-8158 | Potential Infinite Loop in ntpq | 2016-10-05 |
| CVE | CVE-2015-8138 | ntp: missing check for zero originate timestamp | 2016-10-05 |
| CVE | CVE-2016-1547 | Validate crypto-NAKs | 2016-10-05 |
| CVE | CVE-2015-7979 | Off-path Denial of Service (DoS) attack on authenticated broadcast mode | 2016-10-05 |
| CVE | CVE-2015-7978 | Stack exhaustion in recursive traversal of restriction list | 2016-10-05 |
About
-
Send Feedback to @ubuntu_updates
