Oval Definition:	oval:org.opensuse.security:def:56286
Revision Date: 2020-12-01 Version: 1 Title: Security update for ntp (Moderate) Description: This ntp update to version 4.2.8p10 fixes serveral issues. This updated enables leap smearing. See /usr/share/doc/packages/ntp/README.leapsmear for details. Security issues fixed (bsc#1030050): - CVE-2017-6464: Denial of Service via Malformed Config - CVE-2017-6462: Buffer Overflow in DPTS Clock - CVE-2017-6463: Authenticated DoS via Malicious Config Option - CVE-2017-6458: Potential Overflows in ctl_put() functions - CVE-2017-6451: Improper use of snprintf() in mx4200_send() - CVE-2017-6460: Buffer Overflow in ntpq when fetching reslist - CVE-2016-9042: 0rigin (zero origin) DoS. - ntpq_stripquotes() returns incorrect Value - ereallocarray()/eallocarray() underused - Copious amounts of Unused Code - Off-by-one in Oncore GPS Receiver - Makefile does not enforce Security Flags Bugfixes: - Remove spurious log messages (bsc#1014172). - clang scan-build findings - Support for openssl-1.1.0 without compatibility modes - Bugfix 3072 breaks multicastclient - forking async worker: interrupted pipe I/O - (...) time_pps_create: Exec format error - Incorrect Logic for Peer Event Limiting - Change the process name of forked DNS worker - Trap Configuration Fail - Nothing happens if minsane < maxclock < minclock - allow -4/-6 on restrict line with mask - out-of-bound pointers in ctl_putsys and decode_bitflags - Move ntp-kod to /var/lib/ntp, because /var/db is not a standard directory and causes problems for transactional updates. Family: unix Class: patch Status: Reference(s): 1001459 1012382 1012917 1012985 1014172 1019784 1022476 1023287 1027038 1027149 1028217 1030050 1030531 1030552 1031515 1031717 1033960 1034405 1035531 1035738 1037182 1037183 1037994 1038078 1038085 1038544 1038564 1038879 1038883 1038981 1038982 1039348 1039354 1039456 1039721 1039864 1039882 1039883 1039885 1040069 1041160 1041429 1041431 1042696 1042832 1042863 1043652 1044125 1045327 1045487 1045922 1046107 1048275 1048585 1048788 1049645 1049882 1052360 1053148 1053152 1053317 1056588 1056982 1057179 1058410 1058507 1058524 1059863 1060279 1062471 1062520 1063667 1064388 1066223 1066842 1068032 1068038 1068569 1068984 1069160 1070799 1072163 1072484 1072589 1073229 1073928 1074134 1074392 1074488 1074621 1074709 1074839 1074847 1075066 1075078 1075087 1075091 1075428 1075617 1075621 1075627 1075994 1076017 1076110 1076806 1076809 1076872 1076899 1077068 1077560 1077592 1078526 1078681 1098998 1106119 1131060 856774 860250 863764 878240 922855 922871 940191 944787 946204 948976 963844 982385 982386 986924 988524 993099 994364 CVE-2009-5029 CVE-2010-0407 CVE-2010-4531 CVE-2011-0020 CVE-2011-0064 CVE-2012-0786 CVE-2012-4412 CVE-2013-0242 CVE-2013-1914 CVE-2013-1984 CVE-2013-1995 CVE-2013-1998 CVE-2013-2207 CVE-2013-4237 CVE-2013-4332 CVE-2013-4458 CVE-2013-7423 CVE-2014-0107 CVE-2014-0475 CVE-2014-3467 CVE-2014-3468 CVE-2014-3469 CVE-2014-4043 CVE-2014-5119 CVE-2014-6040 CVE-2014-7817 CVE-2014-8119 CVE-2014-8121 CVE-2014-9402 CVE-2015-1472 CVE-2015-1781 CVE-2015-2806 CVE-2015-5260 CVE-2015-5261 CVE-2015-7236 CVE-2016-0749 CVE-2016-1856 CVE-2016-1857 CVE-2016-2150 CVE-2016-2183 CVE-2016-4590 CVE-2016-4591 CVE-2016-4622 CVE-2016-4624 CVE-2016-9042 CVE-2017-1000363 CVE-2017-1000365 CVE-2017-1000380 CVE-2017-10661 CVE-2017-11176 CVE-2017-12153 CVE-2017-12154 CVE-2017-12762 CVE-2017-13080 CVE-2017-14051 CVE-2017-14106 CVE-2017-14140 CVE-2017-15129 CVE-2017-15265 CVE-2017-15274 CVE-2017-15649 CVE-2017-17712 CVE-2017-17862 CVE-2017-17864 CVE-2017-18017 CVE-2017-5715 CVE-2017-6451 CVE-2017-6458 CVE-2017-6460 CVE-2017-6462 CVE-2017-6463 CVE-2017-6464 CVE-2017-7482 CVE-2017-7487 CVE-2017-7518 CVE-2017-7541 CVE-2017-7542 CVE-2017-7889 CVE-2017-8831 CVE-2017-8890 CVE-2017-8924 CVE-2017-8925 CVE-2017-9074 CVE-2017-9075 CVE-2017-9076 CVE-2017-9077 CVE-2017-9242 CVE-2018-1000004 CVE-2018-12359 CVE-2018-12360 CVE-2018-12362 CVE-2018-12363 CVE-2018-12364 CVE-2018-12365 CVE-2018-12366 CVE-2018-12368 CVE-2018-5156 CVE-2018-5188 CVE-2018-5332 CVE-2018-5333 CVE-2019-3880 SUSE-SU-2015:1706-1 SUSE-SU-2016:1559-1 SUSE-SU-2017:0720-1 SUSE-SU-2017:1048-1 SUSE-SU-2017:2908-1 SUSE-SU-2018:0416-1 SUSE-SU-2018:2322-1 SUSE-SU-2019:1195-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information kernel-default-4.12.14-lp150.11 is installed OR kernel-vanilla-base-4.12.14-lp150.11 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information ncat-7.70-lp151.3.3 is installed OR ndiff-7.70-lp151.3.3 is installed OR nmap-7.70-lp151.3.3 is installed OR nping-7.70-lp151.3.3 is installed OR zenmap-7.70-lp151.3.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND rpcbind-0.1.6+git20080930-6.24 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information ntp-4.2.8p10-60 is installed OR ntp-doc-4.2.8p10-60 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information glibc-2.19-31 is installed OR glibc-32bit-2.19-31 is installed OR glibc-devel-2.19-31 is installed OR glibc-devel-32bit-2.19-31 is installed OR glibc-html-2.19-31 is installed OR glibc-i18ndata-2.19-31 is installed OR glibc-info-2.19-31 is installed OR glibc-locale-2.19-31 is installed OR glibc-locale-32bit-2.19-31 is installed OR glibc-profile-2.19-31 is installed OR glibc-profile-32bit-2.19-31 is installed OR nscd-2.19-31 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-devel-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information augeas-1.2.0-10 is installed OR augeas-lenses-1.2.0-10 is installed OR libaugeas0-1.2.0-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libvirt-2.0.0-27.45 is installed OR libvirt-client-2.0.0-27.45 is installed OR libvirt-daemon-2.0.0-27.45 is installed OR libvirt-daemon-config-network-2.0.0-27.45 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.45 is installed OR libvirt-daemon-driver-interface-2.0.0-27.45 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.45 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.45 is installed OR libvirt-daemon-driver-network-2.0.0-27.45 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.45 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.45 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.45 is installed OR libvirt-daemon-driver-secret-2.0.0-27.45 is installed OR libvirt-daemon-driver-storage-2.0.0-27.45 is installed OR libvirt-daemon-hooks-2.0.0-27.45 is installed OR libvirt-daemon-lxc-2.0.0-27.45 is installed OR libvirt-daemon-qemu-2.0.0-27.45 is installed OR libvirt-daemon-xen-2.0.0-27.45 is installed OR libvirt-doc-2.0.0-27.45 is installed OR libvirt-lock-sanlock-2.0.0-27.45 is installed OR libvirt-nss-2.0.0-27.45 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information gnutls-3.2.15-18.6 is installed OR libgnutls-openssl27-3.2.15-18.6 is installed OR libgnutls28-3.2.15-18.6 is installed OR libgnutls28-32bit-3.2.15-18.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_90-92_45-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_14-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND perl-Config-IniFiles-2.82-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_162-94_72-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_22-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information java-1_7_0-openjdk-1.7.0.221-43.22 is installed OR java-1_7_0-openjdk-demo-1.7.0.221-43.22 is installed OR java-1_7_0-openjdk-devel-1.7.0.221-43.22 is installed OR java-1_7_0-openjdk-headless-1.7.0.221-43.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND coolkey-1.1.0-148.3 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information kernel-default-3.12.74-60.64.63 is installed OR kernel-default-base-3.12.74-60.64.63 is installed OR kernel-default-devel-3.12.74-60.64.63 is installed OR kernel-devel-3.12.74-60.64.63 is installed OR kernel-macros-3.12.74-60.64.63 is installed OR kernel-source-3.12.74-60.64.63 is installed OR kernel-syms-3.12.74-60.64.63 is installed OR kernel-xen-3.12.74-60.64.63 is installed OR kernel-xen-base-3.12.74-60.64.63 is installed OR kernel-xen-devel-3.12.74-60.64.63 is installed OR kgraft-patch-3_12_74-60_64_63-default-1-2 is installed OR kgraft-patch-3_12_74-60_64_63-xen-1-2 is installed OR kgraft-patch-SLE12-SP1_Update_22-1-2 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information kernel-firmware-20170530-21.22 is installed OR ucode-amd-20170530-21.22 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libmysqlclient18-10.0.40.3-29.38 is installed OR mariadb-10.0.40.3-29.38 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND python-Twisted-15.2.1-9.8 is installed
BACK