Oval Definition:oval:org.opensuse.security:def:5471
Revision Date:2020-12-02Version:1
Title:Security update for ntp (Moderate)
Description:

This update for ntp fixes the following issues:

ntp was updated to 4.2.8p15

- CVE-2020-11868: Fixed an issue which a server mode packet with spoofed source address frequently send to the client ntpd could have caused denial of service (bsc#1169740). - CVE-2018-8956: Fixed an issue which could have allowed remote attackers to prevent a broadcast client from synchronizing its clock with a broadcast NTP server via spoofed mode 3 and mode 5 packets (bsc#1171355). - CVE-2020-13817: Fixed an issue which an off-path attacker with the ability to query time from victim's ntpd instance could have modified the victim's clock by a limited amount (bsc#1172651). - CVE-2020-15025: Fixed an issue which remote attacker could have caused denial of service by consuming the memory when a CMAC key was used andassociated with a CMAC algorithm in the ntp.keys (bsc#1173334). - Removed an OpenSSL version warning (bsc#992038 and bsc#1125401).
Family:unixClass:patch
Status:Reference(s):1125401
1169740
1171355
1172651
1173334
1175070
1175071
1175074
992038
CVE-2008-4989
CVE-2009-2666
CVE-2009-4012
CVE-2010-1167
CVE-2010-2242
CVE-2010-2529
CVE-2011-1000
CVE-2011-1146
CVE-2011-1521
CVE-2011-1947
CVE-2011-2511
CVE-2011-3389
CVE-2011-4128
CVE-2011-4600
CVE-2011-4944
CVE-2012-0390
CVE-2012-0845
CVE-2012-1150
CVE-2012-1569
CVE-2012-1573
CVE-2012-3445
CVE-2012-3482
CVE-2012-4425
CVE-2012-5112
CVE-2012-5133
CVE-2013-0170
CVE-2013-1431
CVE-2013-1752
CVE-2013-1753
CVE-2013-1962
CVE-2013-2218
CVE-2013-2230
CVE-2013-4153
CVE-2013-4154
CVE-2013-4238
CVE-2013-4239
CVE-2013-4296
CVE-2013-4297
CVE-2013-4311
CVE-2013-4399
CVE-2013-4400
CVE-2013-4401
CVE-2013-6436
CVE-2013-6457
CVE-2013-6458
CVE-2013-6487
CVE-2014-0028
CVE-2014-0092
CVE-2014-0179
CVE-2014-1344
CVE-2014-1384
CVE-2014-1385
CVE-2014-1386
CVE-2014-1387
CVE-2014-1388
CVE-2014-1389
CVE-2014-1390
CVE-2014-1447
CVE-2014-1912
CVE-2014-1932
CVE-2014-1959
CVE-2014-3466
CVE-2014-3633
CVE-2014-3657
CVE-2014-3775
CVE-2014-3970
CVE-2014-4650
CVE-2014-7185
CVE-2014-7202
CVE-2014-7203
CVE-2014-7823
CVE-2014-8136
CVE-2014-8564
CVE-2014-9721
CVE-2015-0236
CVE-2015-0294
CVE-2015-2330
CVE-2015-3622
CVE-2015-5247
CVE-2015-6251
CVE-2018-8956
CVE-2020-11868
CVE-2020-11984
CVE-2020-11993
CVE-2020-13817
CVE-2020-15025
CVE-2020-9490
SUSE-SU-2020:1823-1
SUSE-SU-2020:2344-1
Platform(s):openSUSE 13.1
openSUSE 13.1 NonFree
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise for SAP 12
SUSE Linux Enterprise for SAP 12 SP1
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise Live Patching 12 SP3
SUSE Linux Enterprise Module for Advanced Systems Management 12
SUSE Linux Enterprise Module for Containers 12
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Point of Sale 12 SP2
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 SP1-LTSS
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Server for SAP Applications 12 SP1
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Server for VMWare 11 SP2
SUSE Linux Enterprise Software Development Kit 11 SP2
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP3
SUSE Linux Enterprise Software Development Kit 12 SP4
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 12 SP2
SUSE OpenStack Cloud 5
Product(s):
Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND python-PyYAML-3.10-15.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND telepathy-idle-0.1.5-1.5.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • libtidy-1.0-37.1 is installed
  • OR tidy-1.0-37.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • libpython2_7-1_0-2.7.9-20 is installed
  • OR libpython2_7-1_0-32bit-2.7.9-20 is installed
  • OR python-base-2.7.9-20 is installed
  • OR python-devel-2.7.9-20 is installed
  • OR python-xml-2.7.9-20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND fetchmail-6.3.26-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • bash-4.3-82 is installed
  • OR bash-doc-4.3-82 is installed
  • OR bash-lang-4.3-82 is installed
  • OR libreadline6-6.3-82 is installed
  • OR libreadline6-32bit-6.3-82 is installed
  • OR readline-doc-6.3-82 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-71.85 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-71.85 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-71.85 is installed
  • OR libMagickCore-6_Q16-1-32bit-6.8.8.1-71.85 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-71.85 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_60-52_49-default-2-2.2 is installed
  • OR kgraft-patch-3_12_60-52_49-xen-2-2.2 is installed
  • OR kgraft-patch-SLE12_Update_14-2-2.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 SP1 is installed
  • AND Package Information
  • kgraft-patch-3_12_67-60_64_18-default-9-2.1 is installed
  • OR kgraft-patch-3_12_67-60_64_18-xen-9-2.1 is installed
  • OR kgraft-patch-SLE12-SP1_Update_9-9-2.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND python-requests-2.8.1-6.16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • AND Package Information
  • gpgme-1.5.1-1 is installed
  • OR libgpgme11-1.5.1-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 SP3 is installed
  • AND Package Information
  • kgraft-patch-4_4_114-94_14-default-4-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_9-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed
  • AND Package Information
  • salt-2016.11.4-46.7.1 is installed
  • OR salt-api-2016.11.4-46.7.1 is installed
  • OR salt-bash-completion-2016.11.4-46.7.1 is installed
  • OR salt-cloud-2016.11.4-46.7.1 is installed
  • OR salt-doc-2016.11.4-46.7.1 is installed
  • OR salt-master-2016.11.4-46.7.1 is installed
  • OR salt-minion-2016.11.4-46.7.1 is installed
  • OR salt-proxy-2016.11.4-46.7.1 is installed
  • OR salt-ssh-2016.11.4-46.7.1 is installed
  • OR salt-syndic-2016.11.4-46.7.1 is installed
  • OR salt-zsh-completion-2016.11.4-46.7.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 12 is installed
  • AND Package Information
  • ruby2.1-rubygem-rack-1_4-1.4.5-8.10 is installed
  • OR rubygem-rack-1_4-1.4.5-8.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 12 is installed
  • AND Package Information
  • libopenssl0_9_8-0.9.8j-59 is installed
  • OR libopenssl0_9_8-32bit-0.9.8j-59 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 12 is installed
  • AND Package Information
  • kernel-ec2-3.12.32-33.1 is installed
  • OR kernel-ec2-devel-3.12.32-33.1 is installed
  • OR kernel-ec2-extra-3.12.32-33.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 12 is installed
  • AND Package Information
  • apache2-mod_php7-7.0.7-15 is installed
  • OR php7-7.0.7-15 is installed
  • OR php7-bcmath-7.0.7-15 is installed
  • OR php7-bz2-7.0.7-15 is installed
  • OR php7-calendar-7.0.7-15 is installed
  • OR php7-ctype-7.0.7-15 is installed
  • OR php7-curl-7.0.7-15 is installed
  • OR php7-dba-7.0.7-15 is installed
  • OR php7-dom-7.0.7-15 is installed
  • OR php7-enchant-7.0.7-15 is installed
  • OR php7-exif-7.0.7-15 is installed
  • OR php7-fastcgi-7.0.7-15 is installed
  • OR php7-fileinfo-7.0.7-15 is installed
  • OR php7-fpm-7.0.7-15 is installed
  • OR php7-ftp-7.0.7-15 is installed
  • OR php7-gd-7.0.7-15 is installed
  • OR php7-gettext-7.0.7-15 is installed
  • OR php7-gmp-7.0.7-15 is installed
  • OR php7-iconv-7.0.7-15 is installed
  • OR php7-imap-7.0.7-15 is installed
  • OR php7-intl-7.0.7-15 is installed
  • OR php7-json-7.0.7-15 is installed
  • OR php7-ldap-7.0.7-15 is installed
  • OR php7-mbstring-7.0.7-15 is installed
  • OR php7-mcrypt-7.0.7-15 is installed
  • OR php7-mysql-7.0.7-15 is installed
  • OR php7-odbc-7.0.7-15 is installed
  • OR php7-opcache-7.0.7-15 is installed
  • OR php7-openssl-7.0.7-15 is installed
  • OR php7-pcntl-7.0.7-15 is installed
  • OR php7-pdo-7.0.7-15 is installed
  • OR php7-pear-7.0.7-15 is installed
  • OR php7-pear-Archive_Tar-7.0.7-15 is installed
  • OR php7-pgsql-7.0.7-15 is installed
  • OR php7-phar-7.0.7-15 is installed
  • OR php7-posix-7.0.7-15 is installed
  • OR php7-pspell-7.0.7-15 is installed
  • OR php7-shmop-7.0.7-15 is installed
  • OR php7-snmp-7.0.7-15 is installed
  • OR php7-soap-7.0.7-15 is installed
  • OR php7-sockets-7.0.7-15 is installed
  • OR php7-sqlite-7.0.7-15 is installed
  • OR php7-sysvmsg-7.0.7-15 is installed
  • OR php7-sysvsem-7.0.7-15 is installed
  • OR php7-sysvshm-7.0.7-15 is installed
  • OR php7-tokenizer-7.0.7-15 is installed
  • OR php7-wddx-7.0.7-15 is installed
  • OR php7-xmlreader-7.0.7-15 is installed
  • OR php7-xmlrpc-7.0.7-15 is installed
  • OR php7-xmlwriter-7.0.7-15 is installed
  • OR php7-xsl-7.0.7-15 is installed
  • OR php7-zip-7.0.7-15 is installed
  • OR php7-zlib-7.0.7-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Point of Sale 12 SP2 is installed
  • AND Package Information
  • salt-2016.11.4-46.10.1 is installed
  • OR salt-minion-2016.11.4-46.10.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 is installed
  • AND Package Information
  • ruby-1.8.7.p72-5.22.1 is installed
  • OR ruby-doc-html-1.8.7.p72-5.22.1 is installed
  • OR ruby-tk-1.8.7.p72-5.22.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP1-LTSS is installed
  • AND Package Information
  • libpython2_6-1_0-2.6.9-0.31.1 is installed
  • OR libpython2_6-1_0-32bit-2.6.9-0.31.1 is installed
  • OR python-2.6.9-0.31.1 is installed
  • OR python-32bit-2.6.9-0.31.1 is installed
  • OR python-base-2.6.9-0.31.1 is installed
  • OR python-base-32bit-2.6.9-0.31.1 is installed
  • OR python-curses-2.6.9-0.31.1 is installed
  • OR python-demo-2.6.9-0.31.1 is installed
  • OR python-devel-2.6.9-0.31.1 is installed
  • OR python-doc-2.6-8.31.1 is installed
  • OR python-doc-pdf-2.6-8.31.1 is installed
  • OR python-gdbm-2.6.9-0.31.1 is installed
  • OR python-idle-2.6.9-0.31.1 is installed
  • OR python-tk-2.6.9-0.31.1 is installed
  • OR python-xml-2.6.9-0.31.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND Package Information
  • kdebase3-runtime-3.5.10-20.31 is installed
  • OR kdebase3-runtime-32bit-3.5.10-20.31 is installed
  • OR kdebase3-runtime-x86-3.5.10-20.31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND apache2-mod_jk-1.2.26-1.30.110 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • apache-commons-daemon-1.0.15-4 is installed
  • OR apache-commons-daemon-javadoc-1.0.15-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-9 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • ghostscript-9.15-17.2 is installed
  • OR ghostscript-x11-9.15-17.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • libxerces-c-3_1-3.1.1-12 is installed
  • OR libxerces-c-3_1-32bit-3.1.1-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND Package Information
  • MozillaFirefox-45.4.0esr-81 is installed
  • OR MozillaFirefox-translations-45.4.0esr-81 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 is installed
  • AND Package Information
  • compat-libldap-2_3-0-2.3.37-18.24.9 is installed
  • OR libldap-2_4-2-2.4.41-18.24.9 is installed
  • OR libldap-2_4-2-32bit-2.4.41-18.24.9 is installed
  • OR openldap2-2.4.41-18.24.9 is installed
  • OR openldap2-back-meta-2.4.41-18.24.9 is installed
  • OR openldap2-client-2.4.41-18.24.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed
  • AND Package Information
  • compat-openssl098-0.9.8j-102 is installed
  • OR libopenssl0_9_8-0.9.8j-102 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND ntp-4.2.8p15-4.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP2 is installed
  • AND Package Information
  • bytefx-data-mysql-2.6.7-0.9.1 is installed
  • OR mono-core-2.6.7-0.9.1 is installed
  • OR mono-data-2.6.7-0.9.1 is installed
  • OR mono-data-firebird-2.6.7-0.9.1 is installed
  • OR mono-data-oracle-2.6.7-0.9.1 is installed
  • OR mono-data-postgresql-2.6.7-0.9.1 is installed
  • OR mono-data-sqlite-2.6.7-0.9.1 is installed
  • OR mono-data-sybase-2.6.7-0.9.1 is installed
  • OR mono-devel-2.6.7-0.9.1 is installed
  • OR mono-extras-2.6.7-0.9.1 is installed
  • OR mono-jscript-2.6.7-0.9.1 is installed
  • OR mono-locale-extras-2.6.7-0.9.1 is installed
  • OR mono-nunit-2.6.7-0.9.1 is installed
  • OR mono-wcf-2.6.7-0.9.1 is installed
  • OR mono-web-2.6.7-0.9.1 is installed
  • OR mono-winforms-2.6.7-0.9.1 is installed
  • OR mono-winfxcore-2.6.7-0.9.1 is installed
  • OR monodoc-core-2.6.7-0.9.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND Package Information
  • cpp48-4.8.3+r212056-2.17 is installed
  • OR gcc48-4.8.3+r212056-2.17 is installed
  • OR gcc48-32bit-4.8.3+r212056-2.17 is installed
  • OR gcc48-c++-4.8.3+r212056-2.17 is installed
  • OR gcc48-fortran-4.8.3+r212056-2.17 is installed
  • OR gcc48-fortran-32bit-4.8.3+r212056-2.17 is installed
  • OR gcc48-info-4.8.3+r212056-2.17 is installed
  • OR gcc48-locale-4.8.3+r212056-2.17 is installed
  • OR libasan0-4.8.3+r212056-2.17 is installed
  • OR libatomic1-4.8.3+r212056-2.17 is installed
  • OR libgfortran3-4.8.3+r212056-2.17 is installed
  • OR libgfortran3-32bit-4.8.3+r212056-2.17 is installed
  • OR libitm1-4.8.3+r212056-2.17 is installed
  • OR libquadmath0-4.8.3+r212056-2.17 is installed
  • OR libquadmath0-32bit-4.8.3+r212056-2.17 is installed
  • OR libstdc++48-devel-4.8.3+r212056-2.17 is installed
  • OR libstdc++48-devel-32bit-4.8.3+r212056-2.17 is installed
  • OR libtsan0-4.8.3+r212056-2.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND accountsservice-devel-0.6.35-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
  • AND libmusicbrainz-devel-2.1.5-27 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP4 is installed
  • AND Package Information
  • avahi-compat-howl-devel-0.6.32-30 is installed
  • OR avahi-compat-mDNSResponder-devel-0.6.32-30 is installed
  • OR libavahi-devel-0.6.32-30 is installed
  • OR libhowl0-0.6.32-30 is installed
  • OR python-avahi-0.6.32-30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-5 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-5 is installed
  • OR libMagickCore-6_Q16-1-32bit-6.8.8.1-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND bash-lang-4.2-75 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND Package Information
  • gstreamer-0_10-plugins-bad-0.10.23-22.5 is installed
  • OR gstreamer-0_10-plugins-bad-lang-0.10.23-22.5 is installed
  • OR libgstbasecamerabinsrc-0_10-23-0.10.23-22.5 is installed
  • OR libgstbasecamerabinsrc-0_10-23-32bit-0.10.23-22.5 is installed
  • OR libgstbasevideo-0_10-23-0.10.23-22.5 is installed
  • OR libgstbasevideo-0_10-23-32bit-0.10.23-22.5 is installed
  • OR libgstcodecparsers-0_10-23-0.10.23-22.5 is installed
  • OR libgstphotography-0_10-23-0.10.23-22.5 is installed
  • OR libgstphotography-0_10-23-32bit-0.10.23-22.5 is installed
  • OR libgstsignalprocessor-0_10-23-0.10.23-22.5 is installed
  • OR libgstsignalprocessor-0_10-23-32bit-0.10.23-22.5 is installed
  • OR libgstvdp-0_10-23-0.10.23-22.5 is installed
  • OR libgstvdp-0_10-23-32bit-0.10.23-22.5 is installed
    • BACK