ntp-4.2.6p5-10.0.1.AXS4
エラータID: AXSA:2016-470:02
リリース日:
2016/06/08 Wednesday - 09:38
題名:
ntp-4.2.6p5-10.0.1.AXS4
影響のあるチャネル:
Asianux Server 4 for x86_64
Asianux Server 4 for x86
Severity:
Moderate
Description:
以下項目について対処しました。
[Security Fix]
- NTP の ntpd の ntpd の ntp_parser.y 内の log_config_command 関数に
は,巧妙に細工された logconfig コマンドによって,リモートの攻撃者が
サービス拒否 (ntpd のクラッシュ) を引き起こす脆弱性があります。
(CVE-2015-5194)
- NTP の ntpd の ntp_openssl.m4 には,巧妙に細工されたコンパイル中に有
効にならない統計情報あるいは filegen 設定コマンドによって,リモートの攻撃
者がサービス拒否 (セグメンテーションフォールト) を引き起こす脆弱性がありま
す。(CVE-2015-5195)
- SNTP の ntp.d の ULOGTOD 関数は,double 型への型変換を適切に行っておら
ず,巧妙に細工された NTP パケットによって,リモートの攻撃者がサービス拒否
(無限ループ) を引き起こす脆弱性があります。(CVE-2015-5219)
- 現時点では CVE-2015-7691, CVE-2015-7692, CVE-2015-7701, CVE-2015-7702, CVE-2015-7703, CVE-2015-7852, CVE-2015-7977, CVE-2015-7978 の情報が公開されておりません。CVE の情報が公開され次第情報をアップデートいたします。
一部CVEの翻訳文はJVNからの引用になります。
http://jvndb.jvn.jp/
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2015-5194
The log_config_command function in ntp_parser.y in ntpd in NTP before 4.2.7p42 allows remote attackers to cause a denial of service (ntpd crash) via crafted logconfig commands.
The log_config_command function in ntp_parser.y in ntpd in NTP before 4.2.7p42 allows remote attackers to cause a denial of service (ntpd crash) via crafted logconfig commands.
CVE-2015-5195
ntp_openssl.m4 in ntpd in NTP before 4.2.7p112 allows remote attackers to cause a denial of service (segmentation fault) via a crafted statistics or filegen configuration command that is not enabled during compilation.
ntp_openssl.m4 in ntpd in NTP before 4.2.7p112 allows remote attackers to cause a denial of service (segmentation fault) via a crafted statistics or filegen configuration command that is not enabled during compilation.
CVE-2015-5219
The ULOGTOD function in ntp.d in SNTP before 4.2.7p366 does not properly perform type conversions from a precision value to a double, which allows remote attackers to cause a denial of service (infinite loop) via a crafted NTP packet.
The ULOGTOD function in ntp.d in SNTP before 4.2.7p366 does not properly perform type conversions from a precision value to a double, which allows remote attackers to cause a denial of service (infinite loop) via a crafted NTP packet.
CVE-2015-7691
The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted packets containing particular autokey operations. NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.
The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted packets containing particular autokey operations. NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.
CVE-2015-7692
The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash). NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.
The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash). NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.
CVE-2015-7701
Memory leak in the CRYPTO_ASSOC function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (memory consumption).
Memory leak in the CRYPTO_ASSOC function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (memory consumption).
CVE-2015-7702
The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash). NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.
The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash). NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.
CVE-2015-7703
The "pidfile" or "driftfile" directives in NTP ntpd 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77, when ntpd is configured to allow remote configuration, allows remote attackers with an IP address that is allowed to send configuration requests, and with knowledge of the remote configuration password to write to arbitrary files via the :config command.
The "pidfile" or "driftfile" directives in NTP ntpd 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77, when ntpd is configured to allow remote configuration, allows remote attackers with an IP address that is allowed to send configuration requests, and with knowledge of the remote configuration password to write to arbitrary files via the :config command.
CVE-2015-7852
ntpq in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted mode 6 response packets.
ntpq in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted mode 6 response packets.
CVE-2015-7977
ntpd in NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service (NULL pointer dereference) via a ntpdc reslist command.
ntpd in NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service (NULL pointer dereference) via a ntpdc reslist command.
CVE-2015-7978
NTP before 4.2.8p6 and 4.3.0 before 4.3.90 allows a remote attackers to cause a denial of service (stack exhaustion) via an ntpdc relist command, which triggers recursive traversal of the restriction list.
NTP before 4.2.8p6 and 4.3.0 before 4.3.90 allows a remote attackers to cause a denial of service (stack exhaustion) via an ntpdc relist command, which triggers recursive traversal of the restriction list.
追加情報:
N/A
ダウンロード:
SRPMS
- ntp-4.2.6p5-10.0.1.AXS4.src.rpm
MD5: 0acdfb2c39144284e0fcf95a72d7ff9e
SHA-256: e3cabf18ead0ab9e886253b3d2e77c48b42c934b204a7b3dd87d67ba9364d9cb
Size: 4.11 MB
Asianux Server 4 for x86
- ntp-4.2.6p5-10.0.1.AXS4.i686.rpm
MD5: 65644671c5392db8fb8062e1b0a6cfc3
SHA-256: e0015bf3fdaf0c368b271ce7cf309fcb2cf9b5fa616736a411855d010c9c96c2
Size: 592.05 kB - ntpdate-4.2.6p5-10.0.1.AXS4.i686.rpm
MD5: 94b166aa2f9cd8dfa766688efc1285f6
SHA-256: a2175176a8fc1e18fdddb07cbb5a5217a561d286249a3b40292cd3c285105053
Size: 76.78 kB
Asianux Server 4 for x86_64
- ntp-4.2.6p5-10.0.1.AXS4.x86_64.rpm
MD5: b41b7909afc471e39768aeff9ef326ae
SHA-256: 1e958dfe72a48c4856dccb4ea92e89e350836269431d453114856975a49350ec
Size: 597.06 kB - ntpdate-4.2.6p5-10.0.1.AXS4.x86_64.rpm
MD5: 310c0c1ea5d7ea75c6debfe7ce5de633
SHA-256: 60140d1756584418e209d0416ea56a8a4fce1fb9326aea32f5d8690aff400c29
Size: 76.88 kB
English