diff options
| author |   Armin Kuster <akuster808@gmail.com> | 2018-04-10 16:54:46 -0700 |
|---|---|---|
| committer |   Khem Raj <raj.khem@gmail.com> | 2018-05-18 12:30:55 -0700 |
| commit | 13888e3d59246e0cda9acd63d1df3d59ed4009f3 (patch) | |
| tree | 5ecf5446ce5407fde55296848c46b70e0bc5bf5b /meta-networking/site | |
| parent | c273f10c6e2ebae141c7339f93dd8cf277aa0352 (diff) | |
| download | meta-openembedded-contrib-13888e3d59246e0cda9acd63d1df3d59ed4009f3.tar.gz | |
ntp: update to 4.2.8.p11
This release addresses five security issues in ntpd:
LOW/MEDIUM: Sec 3012 / CVE-2016-1549 / VU#961909: Sybil vulnerability: ephemeral association attack
INFO/MEDIUM: Sec 3412 / CVE-2018-7182 / VU#961909: ctl_getitem(): buffer read overrun leads to undefined behavior and information leak
LOW: Sec 3415 / CVE-2018-7170 / VU#961909: Multiple authenticated ephemeral associations
LOW: Sec 3453 / CVE-2018-7184 / VU#961909: Interleaved symmetric mode cannot recover from bad state
LOW/MEDIUM: Sec 3454 / CVE-2018-7185 / VU#961909: Unauthenticated packet can reset authenticated interleaved association
one security issue in ntpq:
MEDIUM: Sec 3414 / CVE-2018-7183 / VU#961909: ntpq:decodearr() can write beyond its buffer limit
Signed-off-by: Armin Kuster <akuster@mvista.com>
Diffstat (limited to 'meta-networking/site')
0 files changed, 0 insertions, 0 deletions