Oval Definition:oval:org.opensuse.security:def:52140
Revision Date:2020-12-01Version:1
Title:Security update for ntp (Moderate)
Description:

This update for ntp fixes the following issues:

ntp was updated to 4.2.8p15

- CVE-2020-11868: Fixed an issue which a server mode packet with spoofed source address frequently send to the client ntpd could have caused denial of service (bsc#1169740). - CVE-2018-8956: Fixed an issue which could have allowed remote attackers to prevent a broadcast client from synchronizing its clock with a broadcast NTP server via spoofed mode 3 and mode 5 packets (bsc#1171355). - CVE-2020-13817: Fixed an issue which an off-path attacker with the ability to query time from victim's ntpd instance could have modified the victim's clock by a limited amount (bsc#1172651). - CVE-2020-15025: Fixed an issue which remote attacker could have caused denial of service by consuming the memory when a CMAC key was used andassociated with a CMAC algorithm in the ntp.keys (bsc#1173334). - Removed an OpenSSL version warning (bsc#992038 and bsc#1125401).
Family:unixClass:patch
Status:Reference(s):1120999
1125230
1125401
1152692
1154063
1155327
1166881
1166916
1168345
1169740
1171355
1172442
1172443
1172651
1173334
1174230
1174633
1174635
1174638
1176384
1176756
1176899
1177977
1178171
945190
992038
CVE-2007-4129
CVE-2009-0790
CVE-2009-4029
CVE-2012-2388
CVE-2012-4024
CVE-2012-4025
CVE-2013-2944
CVE-2013-4238
CVE-2013-5018
CVE-2013-6075
CVE-2013-6076
CVE-2014-2338
CVE-2014-3467
CVE-2014-3468
CVE-2014-3469
CVE-2014-3577
CVE-2014-9221
CVE-2015-2806
CVE-2015-3622
CVE-2015-4171
CVE-2015-5262
CVE-2015-8023
CVE-2016-0772
CVE-2016-1000110
CVE-2016-4008
CVE-2016-5636
CVE-2016-5699
CVE-2016-6318
CVE-2016-9082
CVE-2017-7475
CVE-2017-9022
CVE-2017-9023
CVE-2018-15587
CVE-2018-8956
CVE-2020-11080
CVE-2020-11501
CVE-2020-11868
CVE-2020-13817
CVE-2020-14345
CVE-2020-14346
CVE-2020-14347
CVE-2020-15025
CVE-2020-15673
CVE-2020-15676
CVE-2020-15677
CVE-2020-15678
CVE-2020-15683
CVE-2020-15969
CVE-2020-7598
CVE-2020-8174
SUSE-SU-2019:1266-1
SUSE-SU-2020:0948-1
SUSE-SU-2020:1576-1
SUSE-SU-2020:2326-1
SUSE-SU-2020:3091-1
SUSE-SU-2020:3151-1
Platform(s):openSUSE Leap 15.0
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libqt5-qtwebengine-5.10.1-lp150.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • libxslt-1.1.24-19.23 is installed
  • OR libxslt-32bit-1.1.24-19.23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • MozillaFirefox-38.5.0esr-54 is installed
  • OR MozillaFirefox-translations-38.5.0esr-54 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND coolkey-1.1.0-147 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • cracklib-2.9.0-7 is installed
  • OR libcrack2-2.9.0-7 is installed
  • OR libcrack2-32bit-2.9.0-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • libcairo-gobject2-1.15.2-24 is installed
  • OR libcairo-gobject2-32bit-1.15.2-24 is installed
  • OR libcairo-script-interpreter2-1.15.2-24 is installed
  • OR libcairo2-1.15.2-24 is installed
  • OR libcairo2-32bit-1.15.2-24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • libICE6-1.0.8-12 is installed
  • OR libICE6-32bit-1.0.8-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • ntp-4.2.8p15-4.10 is installed
  • OR ntp-doc-4.2.8p15-4.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND cifs-utils-6.4-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_67-60_64_18-default-8-3 is installed
  • OR kgraft-patch-3_12_67-60_64_18-xen-8-3 is installed
  • OR kgraft-patch-SLE12-SP1_Update_9-8-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • cups-pk-helper-0.2.5-3 is installed
  • OR cups-pk-helper-lang-0.2.5-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • MozillaFirefox-60.3.0-109.50 is installed
  • OR MozillaFirefox-devel-60.3.0-109.50 is installed
  • OR MozillaFirefox-translations-common-60.3.0-109.50 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • python3-rpm-4.11.2-16.21 is installed
  • OR rpm-4.11.2-16.21 is installed
  • OR rpm-32bit-4.11.2-16.21 is installed
  • OR rpm-build-4.11.2-16.21 is installed
  • OR rpm-python-4.11.2-16.21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_103-92_56-default-8-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_17-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • bind-9.9.9P1-62 is installed
  • OR bind-chrootenv-9.9.9P1-62 is installed
  • OR bind-doc-9.9.9P1-62 is installed
  • OR bind-libs-9.9.9P1-62 is installed
  • OR bind-libs-32bit-9.9.9P1-62 is installed
  • OR bind-utils-9.9.9P1-62 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libjpeg-turbo-1.5.3-31.19 is installed
  • OR libjpeg62-62.2.0-31.19 is installed
  • OR libjpeg62-32bit-62.2.0-31.19 is installed
  • OR libjpeg62-turbo-1.5.3-31.19 is installed
  • OR libjpeg8-8.1.2-31.19 is installed
  • OR libjpeg8-32bit-8.1.2-31.19 is installed
  • OR libturbojpeg0-8.1.2-31.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • bzip2-1.0.6-30.8 is installed
  • OR bzip2-doc-1.0.6-30.8 is installed
  • OR libbz2-1-1.0.6-30.8 is installed
  • OR libbz2-1-32bit-1.0.6-30.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • evince-3.20.2-6.27 is installed
  • OR evince-browser-plugin-3.20.2-6.27 is installed
  • OR evince-lang-3.20.2-6.27 is installed
  • OR evince-plugin-djvudocument-3.20.2-6.27 is installed
  • OR evince-plugin-dvidocument-3.20.2-6.27 is installed
  • OR evince-plugin-pdfdocument-3.20.2-6.27 is installed
  • OR evince-plugin-psdocument-3.20.2-6.27 is installed
  • OR evince-plugin-tiffdocument-3.20.2-6.27 is installed
  • OR evince-plugin-xpsdocument-3.20.2-6.27 is installed
  • OR libevdocument3-4-3.20.2-6.27 is installed
  • OR libevview3-3-3.20.2-6.27 is installed
  • OR nautilus-evince-3.20.2-6.27 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libtiff5-4.0.9-44.21 is installed
  • OR libtiff5-32bit-4.0.9-44.21 is installed
  • OR tiff-4.0.9-44.21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND ant-1.9.4-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • nodejs8-8.17.0-3.32 is installed
  • OR nodejs8-devel-8.17.0-3.32 is installed
  • OR nodejs8-docs-8.17.0-3.32 is installed
  • OR npm8-8.17.0-3.32 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • xorg-x11-server-1.19.6-8.16 is installed
  • OR xorg-x11-server-extra-1.19.6-8.16 is installed
  • OR xorg-x11-server-sdk-1.19.6-8.16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • evolution-3.26.6-4.3 is installed
  • OR evolution-devel-3.26.6-4.3 is installed
  • OR evolution-lang-3.26.6-4.3 is installed
  • OR evolution-plugin-bogofilter-3.26.6-4.3 is installed
  • OR evolution-plugin-pst-import-3.26.6-4.3 is installed
  • OR evolution-plugin-spamassassin-3.26.6-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • MozillaThunderbird-78.4.0-3.99 is installed
  • OR MozillaThunderbird-translations-common-78.4.0-3.99 is installed
  • OR MozillaThunderbird-translations-other-78.4.0-3.99 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • bind-9.9.9P1-62 is installed
  • OR bind-chrootenv-9.9.9P1-62 is installed
  • OR bind-devel-9.9.9P1-62 is installed
  • OR bind-doc-9.9.9P1-62 is installed
  • OR bind-libs-9.9.9P1-62 is installed
  • OR bind-libs-32bit-9.9.9P1-62 is installed
  • OR bind-utils-9.9.9P1-62 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • libblkid1-2.28-44.18 is installed
  • OR libblkid1-32bit-2.28-44.18 is installed
  • OR libfdisk1-2.28-44.18 is installed
  • OR libmount1-2.28-44.18 is installed
  • OR libmount1-32bit-2.28-44.18 is installed
  • OR libsmartcols1-2.28-44.18 is installed
  • OR libuuid1-2.28-44.18 is installed
  • OR libuuid1-32bit-2.28-44.18 is installed
  • OR python-libmount-2.28-44.18 is installed
  • OR util-linux-2.28-44.18 is installed
  • OR util-linux-lang-2.28-44.18 is installed
  • OR util-linux-systemd-2.28-44.18 is installed
  • OR uuidd-2.28-44.18 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libecpg6-10.9-1.12 is installed
  • OR libpq5-10.9-1.12 is installed
  • OR libpq5-32bit-10.9-1.12 is installed
  • OR postgresql10-10.9-1.12 is installed
  • OR postgresql10-contrib-10.9-1.12 is installed
  • OR postgresql10-docs-10.9-1.12 is installed
  • OR postgresql10-libs-10.9-1.12 is installed
  • OR postgresql10-plperl-10.9-1.12 is installed
  • OR postgresql10-plpython-10.9-1.12 is installed
  • OR postgresql10-pltcl-10.9-1.12 is installed
  • OR postgresql10-server-10.9-1.12 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-ecdsa-0.13.3-5.10 is installed
    • BACK