ntp-4.2.8p15-7.2 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:11102 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z ntp-4.2.8p15-7.2 on GA media These are all security issues fixed in the ntp-4.2.8p15-7.2 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-11102 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:11102 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2016-9042/ SUSE CVE CVE-2016-9042 page https://www.suse.com/security/cve/CVE-2017-6451/ SUSE CVE CVE-2017-6451 page https://www.suse.com/security/cve/CVE-2017-6458/ SUSE CVE CVE-2017-6458 page https://www.suse.com/security/cve/CVE-2017-6460/ SUSE CVE CVE-2017-6460 page https://www.suse.com/security/cve/CVE-2017-6462/ SUSE CVE CVE-2017-6462 page https://www.suse.com/security/cve/CVE-2017-6463/ SUSE CVE CVE-2017-6463 page https://www.suse.com/security/cve/CVE-2017-6464/ SUSE CVE CVE-2017-6464 page https://www.suse.com/security/cve/CVE-2018-12327/ SUSE CVE CVE-2018-12327 page https://www.suse.com/security/cve/CVE-2018-7170/ SUSE CVE CVE-2018-7170 page https://www.suse.com/security/cve/CVE-2018-7182/ SUSE CVE CVE-2018-7182 page https://www.suse.com/security/cve/CVE-2018-7183/ SUSE CVE CVE-2018-7183 page https://www.suse.com/security/cve/CVE-2018-7184/ SUSE CVE CVE-2018-7184 page https://www.suse.com/security/cve/CVE-2018-7185/ SUSE CVE CVE-2018-7185 page https://www.suse.com/security/cve/CVE-2018-8956/ SUSE CVE CVE-2018-8956 page https://www.suse.com/security/cve/CVE-2019-8936/ SUSE CVE CVE-2019-8936 page https://www.suse.com/security/cve/CVE-2020-11868/ SUSE CVE CVE-2020-11868 page https://www.suse.com/security/cve/CVE-2020-13817/ SUSE CVE CVE-2020-13817 page https://www.suse.com/security/cve/CVE-2020-15025/ SUSE CVE CVE-2020-15025 page openSUSE Tumbleweed ntp-4.2.8p15-7.2 ntp-dcf77-tools-4.2.8p15-7.2 ntp-doc-4.2.8p15-7.2 ntp-4.2.8p15-7.2 as a component of openSUSE Tumbleweed ntp-dcf77-tools-4.2.8p15-7.2 as a component of openSUSE Tumbleweed ntp-doc-4.2.8p15-7.2 as a component of openSUSE Tumbleweed An exploitable denial of service vulnerability exists in the origin timestamp check functionality of ntpd 4.2.8p9. A specially crafted unauthenticated network packet can be used to reset the expected origin timestamp for target peers. Legitimate replies from targeted peers will fail the origin timestamp check (TEST2) causing the reply to be dropped and creating a denial of service condition. CVE-2016-9042 openSUSE Tumbleweed:ntp-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-dcf77-tools-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-doc-4.2.8p15-7.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-9042.html CVE-2016-9042 https://bugzilla.suse.com/1030050 SUSE Bug 1030050 https://bugzilla.suse.com/1038049 SUSE Bug 1038049 https://bugzilla.suse.com/1044525 SUSE Bug 1044525 The mx4200_send function in the legacy MX4200 refclock in NTP before 4.2.8p10 and 4.3.x before 4.3.94 does not properly handle the return value of the snprintf function, which allows local users to execute arbitrary code via unspecified vectors, which trigger an out-of-bounds memory write. CVE-2017-6451 openSUSE Tumbleweed:ntp-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-dcf77-tools-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-doc-4.2.8p15-7.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-6451.html CVE-2017-6451 https://bugzilla.suse.com/1030050 SUSE Bug 1030050 Multiple buffer overflows in the ctl_put* functions in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allow remote authenticated users to have unspecified impact via a long variable. CVE-2017-6458 openSUSE Tumbleweed:ntp-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-dcf77-tools-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-doc-4.2.8p15-7.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-6458.html CVE-2017-6458 https://bugzilla.suse.com/1030050 SUSE Bug 1030050 https://bugzilla.suse.com/1038049 SUSE Bug 1038049 https://bugzilla.suse.com/1044525 SUSE Bug 1044525 Stack-based buffer overflow in the reslist function in ntpq in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote servers have unspecified impact via a long flagstr variable in a restriction list response. CVE-2017-6460 openSUSE Tumbleweed:ntp-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-dcf77-tools-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-doc-4.2.8p15-7.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-6460.html CVE-2017-6460 https://bugzilla.suse.com/1030050 SUSE Bug 1030050 https://bugzilla.suse.com/1038049 SUSE Bug 1038049 https://bugzilla.suse.com/1044525 SUSE Bug 1044525 Buffer overflow in the legacy Datum Programmable Time Server (DPTS) refclock driver in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows local users to have unspecified impact via a crafted /dev/datum device. CVE-2017-6462 openSUSE Tumbleweed:ntp-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-dcf77-tools-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-doc-4.2.8p15-7.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-6462.html CVE-2017-6462 https://bugzilla.suse.com/1030050 SUSE Bug 1030050 https://bugzilla.suse.com/1038049 SUSE Bug 1038049 https://bugzilla.suse.com/1044525 SUSE Bug 1044525 NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote authenticated users to cause a denial of service (daemon crash) via an invalid setting in a :config directive, related to the unpeer option. CVE-2017-6463 openSUSE Tumbleweed:ntp-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-dcf77-tools-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-doc-4.2.8p15-7.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-6463.html CVE-2017-6463 https://bugzilla.suse.com/1030050 SUSE Bug 1030050 https://bugzilla.suse.com/1038049 SUSE Bug 1038049 https://bugzilla.suse.com/1044525 SUSE Bug 1044525 NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote attackers to cause a denial of service (ntpd crash) via a malformed mode configuration directive. CVE-2017-6464 openSUSE Tumbleweed:ntp-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-dcf77-tools-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-doc-4.2.8p15-7.2 moderate 4.6 AV:N/AC:H/Au:M/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-6464.html CVE-2017-6464 https://bugzilla.suse.com/1030050 SUSE Bug 1030050 https://bugzilla.suse.com/1038049 SUSE Bug 1038049 https://bugzilla.suse.com/1044525 SUSE Bug 1044525 Stack-based buffer overflow in ntpq and ntpdc of NTP version 4.2.8p11 allows an attacker to achieve code execution or escalate to higher privileges via a long string as the argument for an IPv4 or IPv6 command-line parameter. NOTE: It is unclear whether there are any common situations in which ntpq or ntpdc is used with a command line from an untrusted source. CVE-2018-12327 openSUSE Tumbleweed:ntp-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-dcf77-tools-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-doc-4.2.8p15-7.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-12327.html CVE-2018-12327 https://bugzilla.suse.com/1098531 SUSE Bug 1098531 https://bugzilla.suse.com/1107887 SUSE Bug 1107887 https://bugzilla.suse.com/1111552 SUSE Bug 1111552 https://bugzilla.suse.com/1111853 SUSE Bug 1111853 https://bugzilla.suse.com/1155513 SUSE Bug 1155513 ntpd in ntp 4.2.x before 4.2.8p7 and 4.3.x before 4.3.92 allows authenticated users that know the private symmetric key to create arbitrarily-many ephemeral associations in order to win the clock selection of ntpd and modify a victim's clock via a Sybil attack. This issue exists because of an incomplete fix for CVE-2016-1549. CVE-2018-7170 openSUSE Tumbleweed:ntp-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-dcf77-tools-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-doc-4.2.8p15-7.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-7170.html CVE-2018-7170 https://bugzilla.suse.com/1082210 SUSE Bug 1082210 https://bugzilla.suse.com/1083424 SUSE Bug 1083424 https://bugzilla.suse.com/1087324 SUSE Bug 1087324 https://bugzilla.suse.com/1098531 SUSE Bug 1098531 https://bugzilla.suse.com/1155513 SUSE Bug 1155513 The ctl_getitem method in ntpd in ntp-4.2.8p6 before 4.2.8p11 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mode 6 packet with a ntpd instance from 4.2.8p6 through 4.2.8p10. CVE-2018-7182 openSUSE Tumbleweed:ntp-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-dcf77-tools-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-doc-4.2.8p15-7.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-7182.html CVE-2018-7182 https://bugzilla.suse.com/1082210 SUSE Bug 1082210 https://bugzilla.suse.com/1083426 SUSE Bug 1083426 https://bugzilla.suse.com/1087324 SUSE Bug 1087324 Buffer overflow in the decodearr function in ntpq in ntp 4.2.8p6 through 4.2.8p10 allows remote attackers to execute arbitrary code by leveraging an ntpq query and sending a response with a crafted array. CVE-2018-7183 openSUSE Tumbleweed:ntp-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-dcf77-tools-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-doc-4.2.8p15-7.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-7183.html CVE-2018-7183 https://bugzilla.suse.com/1082210 SUSE Bug 1082210 https://bugzilla.suse.com/1083417 SUSE Bug 1083417 https://bugzilla.suse.com/1087324 SUSE Bug 1087324 ntpd in ntp 4.2.8p4 before 4.2.8p11 drops bad packets before updating the "received" timestamp, which allows remote attackers to cause a denial of service (disruption) by sending a packet with a zero-origin timestamp causing the association to reset and setting the contents of the packet as the most recent timestamp. This issue is a result of an incomplete fix for CVE-2015-7704. CVE-2018-7184 openSUSE Tumbleweed:ntp-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-dcf77-tools-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-doc-4.2.8p15-7.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-7184.html CVE-2018-7184 https://bugzilla.suse.com/1082210 SUSE Bug 1082210 https://bugzilla.suse.com/1083422 SUSE Bug 1083422 https://bugzilla.suse.com/1087324 SUSE Bug 1087324 The protocol engine in ntp 4.2.6 before 4.2.8p11 allows a remote attackers to cause a denial of service (disruption) by continually sending a packet with a zero-origin timestamp and source IP address of the "other side" of an interleaved association causing the victim ntpd to reset its association. CVE-2018-7185 openSUSE Tumbleweed:ntp-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-dcf77-tools-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-doc-4.2.8p15-7.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-7185.html CVE-2018-7185 https://bugzilla.suse.com/1082210 SUSE Bug 1082210 https://bugzilla.suse.com/1083420 SUSE Bug 1083420 https://bugzilla.suse.com/1087324 SUSE Bug 1087324 https://bugzilla.suse.com/1089405 SUSE Bug 1089405 ntpd in ntp 4.2.8p10, 4.2.8p11, 4.2.8p12 and 4.2.8p13 allow remote attackers to prevent a broadcast client from synchronizing its clock with a broadcast NTP server via soofed mode 3 and mode 5 packets. The attacker must either be a part of the same broadcast network or control a slave in that broadcast network that can capture certain required packets on the attacker's behalf and send them to the attacker. CVE-2018-8956 openSUSE Tumbleweed:ntp-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-dcf77-tools-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-doc-4.2.8p15-7.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-8956.html CVE-2018-8956 https://bugzilla.suse.com/1171355 SUSE Bug 1171355 NTP through 4.2.8p12 has a NULL Pointer Dereference. CVE-2019-8936 openSUSE Tumbleweed:ntp-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-dcf77-tools-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-doc-4.2.8p15-7.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-8936.html CVE-2019-8936 https://bugzilla.suse.com/1128525 SUSE Bug 1128525 https://bugzilla.suse.com/1148892 SUSE Bug 1148892 https://bugzilla.suse.com/1155513 SUSE Bug 1155513 ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows an off-path attacker to block unauthenticated synchronization via a server mode packet with a spoofed source IP address, because transmissions are rescheduled even when a packet lacks a valid origin timestamp. CVE-2020-11868 openSUSE Tumbleweed:ntp-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-dcf77-tools-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-doc-4.2.8p15-7.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-11868.html CVE-2020-11868 https://bugzilla.suse.com/1169740 SUSE Bug 1169740 ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows remote attackers to cause a denial of service (daemon exit or system time change) by predicting transmit timestamps for use in spoofed packets. The victim must be relying on unauthenticated IPv4 time sources. There must be an off-path attacker who can query time from the victim's ntpd instance. CVE-2020-13817 openSUSE Tumbleweed:ntp-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-dcf77-tools-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-doc-4.2.8p15-7.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-13817.html CVE-2020-13817 https://bugzilla.suse.com/1172651 SUSE Bug 1172651 ntpd in ntp 4.2.8 before 4.2.8p15 and 4.3.x before 4.3.101 allows remote attackers to cause a denial of service (memory consumption) by sending packets, because memory is not freed in situations where a CMAC key is used and associated with a CMAC algorithm in the ntp.keys file. CVE-2020-15025 openSUSE Tumbleweed:ntp-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-dcf77-tools-4.2.8p15-7.2 openSUSE Tumbleweed:ntp-doc-4.2.8p15-7.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-15025.html CVE-2020-15025 https://bugzilla.suse.com/1173334 SUSE Bug 1173334