Oval Definition:oval:com.redhat.rhsa:def:20202663
Revision Date:2020-06-23Version:638
Title:RHSA-2020:2663: ntp security update (Moderate)
Description:The Network Time Protocol (NTP) is used to synchronize a computer's time with another referenced time source. These packages include the ntpd service which continuously adjusts system time and utilities used to query and configure the ntpd service.

Security Fix(es):

  • ntp: ntpd using highly predictable transmit timestamps could result in time change or DoS (CVE-2020-13817)

  • ntp: DoS on client ntpd using server mode packet (CVE-2020-11868)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2020-11868
    CVE-2020-13817
    RHSA-2020:2663
    Platform(s):Red Hat Enterprise Linux 7
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 7 is installed
  • AND
  • ntp is earlier than 0:4.2.6p5-29.el7_8.2
  • AND ntp is signed with Red Hat redhatrelease2 key
  • ntp-doc is earlier than 0:4.2.6p5-29.el7_8.2
  • AND ntp-doc is signed with Red Hat redhatrelease2 key
  • ntp-perl is earlier than 0:4.2.6p5-29.el7_8.2
  • AND ntp-perl is signed with Red Hat redhatrelease2 key
  • ntpdate is earlier than 0:4.2.6p5-29.el7_8.2
  • AND ntpdate is signed with Red Hat redhatrelease2 key
  • sntp is earlier than 0:4.2.6p5-29.el7_8.2
  • AND sntp is signed with Red Hat redhatrelease2 key
    • BACK