Oval Definition:oval:com.redhat.rhsa:def:20183854
Revision Date:2018-12-19Version:635
Title:RHSA-2018:3854: ntp security update (Low)
Description:The Network Time Protocol (NTP) is used to synchronize a computer's time with another referenced time source. These packages include the ntpd service which continuously adjusts system time and utilities used to query and configure the ntpd service.

Security Fix(es):

  • ntp: Stack-based buffer overflow in ntpq and ntpdc allows denial of service or code execution (CVE-2018-12327)

    For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2018-12327
    RHSA-2018:3854
    RHSA-2018:3854-01
    Platform(s):Red Hat Enterprise Linux 6
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 6 is installed
  • AND
  • ntp is earlier than 0:4.2.6p5-15.el6_10
  • AND ntp is signed with Red Hat redhatrelease2 key
  • ntp-doc is earlier than 0:4.2.6p5-15.el6_10
  • AND ntp-doc is signed with Red Hat redhatrelease2 key
  • ntp-perl is earlier than 0:4.2.6p5-15.el6_10
  • AND ntp-perl is signed with Red Hat redhatrelease2 key
  • ntpdate is earlier than 0:4.2.6p5-15.el6_10
  • AND ntpdate is signed with Red Hat redhatrelease2 key
    • BACK