Oval Definition:oval:org.opensuse.security:def:55604
Revision Date:2020-12-01Version:1
Title:Security update for ntp (Important)
Description:

ntp was updated to fix four security issues.

These security issues were fixed: - CVE-2014-9294: util/ntp-keygen.c in ntp-keygen used a weak RNG seed, which made it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack (bnc#910764 911792). - CVE-2014-9293: The config_auth function in ntpd, when an auth key was not configured, improperly generated a key, which made it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack (bnc#910764 911792). - CVE-2014-9298: ::1 can be spoofed on some OSes, so ACLs based on IPv6 ::1 addresses could be bypassed (bnc#911792). - CVE-2014-9297: Information leak by not properly checking a length in several places in ntp_crypto.c (bnc#911792).
Family:unixClass:patch
Status:Reference(s):1006796
1007600
1011057
1013496
1024200
1025950
1025951
1027519
1070162
1079730
1083292
1089152
1089635
1090820
1090822
1090823
1098403
1111025
1111331
1120095
1128189
1130680
1150114
578053
777468
910764
911792
913727
916835
938593
941384
946880
962522
966435
966436
971031
974092
978424
979302
979981
981422
982056
982064
982065
982066
982067
982068
985110
994598
CVE-2007-4772
CVE-2012-3461
CVE-2013-4245
CVE-2014-2892
CVE-2014-3634
CVE-2014-9293
CVE-2014-9294
CVE-2014-9297
CVE-2014-9298
CVE-2015-5191
CVE-2015-5567
CVE-2015-5568
CVE-2015-5570
CVE-2015-5571
CVE-2015-5572
CVE-2015-5573
CVE-2015-5574
CVE-2015-5575
CVE-2015-5576
CVE-2015-5577
CVE-2015-5578
CVE-2015-5579
CVE-2015-5580
CVE-2015-5581
CVE-2015-5582
CVE-2015-5584
CVE-2015-5587
CVE-2015-5588
CVE-2015-6676
CVE-2015-6677
CVE-2015-6678
CVE-2015-6679
CVE-2015-6682
CVE-2016-0766
CVE-2016-0773
CVE-2016-10165
CVE-2016-1923
CVE-2016-4953
CVE-2016-4954
CVE-2016-4955
CVE-2016-4956
CVE-2016-4957
CVE-2016-9841
CVE-2017-10281
CVE-2017-10285
CVE-2017-10293
CVE-2017-10295
CVE-2017-10345
CVE-2017-10346
CVE-2017-10347
CVE-2017-10348
CVE-2017-10349
CVE-2017-10350
CVE-2017-10355
CVE-2017-10356
CVE-2017-10357
CVE-2017-10388
CVE-2018-10471
CVE-2018-10472
CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2018-20815
CVE-2018-7550
CVE-2018-8897
CVE-2019-11091
CVE-2019-1543
CVE-2019-16167
SUSE-SU-2015:0274-1
SUSE-SU-2015:1614-1
SUSE-SU-2015:2172-1
SUSE-SU-2016:0555-1
SUSE-SU-2016:1563-1
SUSE-SU-2017:0695-1
SUSE-SU-2017:0701-1
SUSE-SU-2017:3455-1
SUSE-SU-2018:1202-1
SUSE-SU-2019:0787-1
SUSE-SU-2019:2152-1
SUSE-SU-2019:2752-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • bzip2-1.0.6-lp150.3 is installed
  • OR libbz2-1-1.0.6-lp150.3 is installed
  • OR libbz2-1-32bit-1.0.6-lp150.3 is installed
  • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • python-requests-2.20.1-lp151.2.3 is installed
  • OR python-requests-test-2.20.1-lp151.2.3 is installed
  • OR python2-requests-2.20.1-lp151.2.3 is installed
  • OR python2-requests-test-2.20.1-lp151.2.3 is installed
  • OR python3-requests-2.20.1-lp151.2.3 is installed
  • OR python3-requests-test-2.20.1-lp151.2.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND libotr2-3.2.0-10.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • flash-player-11.2.202.521-0.17 is installed
  • OR flash-player-gnome-11.2.202.521-0.17 is installed
  • OR flash-player-kde4-11.2.202.521-0.17 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • orca-2.28.3-0.5 is installed
  • OR orca-lang-2.28.3-0.5 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • ntp-4.2.6p5-37 is installed
  • OR ntp-doc-4.2.6p5-37 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • xen-4.11.1_06-2.11 is installed
  • OR xen-libs-4.11.1_06-2.11 is installed
  • OR xen-libs-32bit-4.11.1_06-2.11 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND libmms0-0.6.2-15 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.15-38.8 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.15-38.8 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.15-38.8 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.15-38.8 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.15-38.8 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • bind-9.9.9P1-46 is installed
  • OR bind-chrootenv-9.9.9P1-46 is installed
  • OR bind-doc-9.9.9P1-46 is installed
  • OR bind-libs-9.9.9P1-46 is installed
  • OR bind-libs-32bit-9.9.9P1-46 is installed
  • OR bind-utils-9.9.9P1-46 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.25-38.23 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.171-27.19 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_103-92_56-default-8-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_17-8-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND libmicrohttpd10-0.9.30-5 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • ibus-1.5.13-15.11 is installed
  • OR ibus-gtk-1.5.13-15.11 is installed
  • OR ibus-gtk3-1.5.13-15.11 is installed
  • OR ibus-lang-1.5.13-15.11 is installed
  • OR libibus-1_0-5-1.5.13-15.11 is installed
  • OR typelib-1_0-IBus-1_0-1.5.13-15.11 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • nfs-client-1.3.0-34.22 is installed
  • OR nfs-doc-1.3.0-34.22 is installed
  • OR nfs-kernel-server-1.3.0-34.22 is installed
  • OR nfs-utils-1.3.0-34.22 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • xen-4.9.3_03-3.47 is installed
  • OR xen-doc-html-4.9.3_03-3.47 is installed
  • OR xen-libs-4.9.3_03-3.47 is installed
  • OR xen-libs-32bit-4.9.3_03-3.47 is installed
  • OR xen-tools-4.9.3_03-3.47 is installed
  • OR xen-tools-domU-4.9.3_03-3.47 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND apache2-mod_jk-1.2.40-5 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • xen-4.5.5_24-22.46 is installed
  • OR xen-doc-html-4.5.5_24-22.46 is installed
  • OR xen-kmp-default-4.5.5_24_k3.12.74_60.64.85-22.46 is installed
  • OR xen-libs-4.5.5_24-22.46 is installed
  • OR xen-libs-32bit-4.5.5_24-22.46 is installed
  • OR xen-tools-4.5.5_24-22.46 is installed
  • OR xen-tools-domU-4.5.5_24-22.46 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND python-PyJWT-1.4.2-3.3 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • xen-4.9.4_04-3.56 is installed
  • OR xen-doc-html-4.9.4_04-3.56 is installed
  • OR xen-libs-4.9.4_04-3.56 is installed
  • OR xen-libs-32bit-4.9.4_04-3.56 is installed
  • OR xen-tools-4.9.4_04-3.56 is installed
  • OR xen-tools-domU-4.9.4_04-3.56 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND python-Twisted-15.2.1-9.8 is installed
  • BACK