ntp-4.2.6p5-22.1.0.1.el7.AXS7
エラータID: AXSA:2016-043:01
Release date:
Wednesday, January 27, 2016 - 17:46
Subject:
ntp-4.2.6p5-22.1.0.1.el7.AXS7
Affected Channels:
Asianux Server 7 for x86_64
Severity:
High
Description:
The Network Time Protocol (NTP) is used to synchronize a computer's
time with another reference time source. This package includes ntpd
(a daemon which continuously adjusts system time) and utilities used
to query and configure the ntpd daemon.
Perl scripts ntp-wait and ntptrace are in the ntp-perl package,
ntpdate is in the ntpdate package and sntp is in the sntp package.
The documentation is in the ntp-doc package.
Security issues fixed with this release:
CVE-2015-8138
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.
Solution:
Update package.
CVEs:
CVE-2015-8138
NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to bypass the origin timestamp validation via a packet with an origin timestamp set to zero.
NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to bypass the origin timestamp validation via a packet with an origin timestamp set to zero.
Additional Info:
N/A
Download:
SRPMS
- ntp-4.2.6p5-22.1.0.1.el7.AXS7.src.rpm
MD5: 99ebce839ef8785427f4a844813b04d2
SHA-256: 3562e85f66c013dcbe975a3375d59e57728f7d69715d4f6d4757895bad7b9743
Size: 4.11 MB
Asianux Server 7 for x86_64
- ntp-4.2.6p5-22.1.0.1.el7.AXS7.x86_64.rpm
MD5: 15ab5cd0ec5a3f240570995de2a9c8e7
SHA-256: 52638766fa2c12338985e5b2e84f878442a4d688f60bff22e3f5ebf4eeaa80ba
Size: 542.53 kB - ntpdate-4.2.6p5-22.1.0.1.el7.AXS7.x86_64.rpm
MD5: 0b963d4100e04df921f834689ef7aaf6
SHA-256: 62a5163483b4c4b0081885dd1a8672895bdbdcc131f5eb096054a297fd447815
Size: 82.98 kB
日本語