Oval Definition:oval:org.opensuse.security:def:63973
Revision Date:2020-12-01Version:1
Title:Security update for ntp (Moderate)
Description:

This update for ntp fixes the following issues:

ntp was updated to 4.2.8p15

- CVE-2020-11868: Fixed an issue which a server mode packet with spoofed source address frequently send to the client ntpd could have caused denial of service (bsc#1169740). - CVE-2018-8956: Fixed an issue which could have allowed remote attackers to prevent a broadcast client from synchronizing its clock with a broadcast NTP server via spoofed mode 3 and mode 5 packets (bsc#1171355). - CVE-2020-13817: Fixed an issue which an off-path attacker with the ability to query time from victim's ntpd instance could have modified the victim's clock by a limited amount (bsc#1172651). - CVE-2020-15025: Fixed an issue which remote attacker could have caused denial of service by consuming the memory when a CMAC key was used andassociated with a CMAC algorithm in the ntp.keys (bsc#1173334).
Family:unixClass:patch
Status:Reference(s):1046303
1050244
1051510
1051858
1061840
1065600
1065729
1071995
1083630
1083647
1085030
1086301
1086313
1086314
1088810
1090888
1104427
1105392
1111666
1112178
1112504
1112910
1114279
1115026
1118338
1120853
1123328
1127371
1131729
1133021
1133147
1134973
1140025
1141054
1142095
1143959
1144333
1144656
1144675
1146519
1146544
1151548
1151910
1151927
1152631
1153917
1154243
1155331
1155334
1155689
1156259
1156286
1156462
1156643
1157155
1157157
1157169
1157303
1157424
1157692
1157853
1157908
1157966
1158013
1158021
1158026
1158094
1158132
1158381
1158394
1158398
1158407
1158410
1158413
1158417
1158427
1158445
1158533
1158637
1158638
1158639
1158640
1158641
1158643
1158644
1158645
1158646
1158647
1158649
1158651
1158652
1158819
1158823
1158824
1158827
1158834
1158893
1158900
1158903
1158904
1158954
1159024
1159028
1159271
1159297
1159394
1159483
1159484
1159569
1159588
1159841
1159908
1159909
1159910
1159911
1159955
1160195
1160210
1160211
1160218
1160433
1160442
1160476
1160560
1160755
1160756
1160784
1160787
1160802
1160803
1160804
1160917
1160966
1160979
1161087
1161360
1161514
1161518
1161522
1161523
1161549
1161552
1161674
1161702
1161875
1161907
1161931
1161933
1161934
1161935
1161936
1161937
1162028
1162067
1162109
1162139
1162557
1162617
1162618
1162619
1162623
1162928
1162943
1163383
1163384
1163762
1163774
1163836
1163840
1163841
1163842
1163843
1163844
1163845
1163846
1163849
1163850
1163851
1163852
1163853
1163855
1163856
1163857
1163858
1163859
1163860
1163861
1163862
1163863
1163867
1163869
1163880
1163971
1164069
1164098
1164115
1164314
1164315
1164388
1164471
1164632
1164705
1164712
1164727
1164728
1164729
1164730
1164731
1164732
1164733
1164734
1164735
1167231
1169740
1171355
1171456
1171457
1171458
1172651
1173334
1173576
1173613
1176437
1176733
CVE-2017-12627
CVE-2018-18541
CVE-2018-8956
CVE-2019-10877
CVE-2019-10878
CVE-2019-10879
CVE-2019-13104
CVE-2019-13106
CVE-2019-14615
CVE-2019-14896
CVE-2019-14897
CVE-2019-15213
CVE-2019-16994
CVE-2019-18808
CVE-2019-18932
CVE-2019-19036
CVE-2019-19045
CVE-2019-19051
CVE-2019-19054
CVE-2019-19066
CVE-2019-19318
CVE-2019-19319
CVE-2019-19332
CVE-2019-19338
CVE-2019-19447
CVE-2019-19523
CVE-2019-19524
CVE-2019-19525
CVE-2019-19526
CVE-2019-19527
CVE-2019-19528
CVE-2019-19529
CVE-2019-19530
CVE-2019-19531
CVE-2019-19532
CVE-2019-19533
CVE-2019-19534
CVE-2019-19535
CVE-2019-19536
CVE-2019-19537
CVE-2019-19543
CVE-2019-19767
CVE-2019-19965
CVE-2019-19966
CVE-2019-20054
CVE-2019-20095
CVE-2019-20096
CVE-2020-10957
CVE-2020-10958
CVE-2020-10967
CVE-2020-11868
CVE-2020-12402
CVE-2020-12415
CVE-2020-12416
CVE-2020-12417
CVE-2020-12418
CVE-2020-12419
CVE-2020-12420
CVE-2020-12421
CVE-2020-12422
CVE-2020-12423
CVE-2020-12424
CVE-2020-12425
CVE-2020-12426
CVE-2020-13817
CVE-2020-15025
CVE-2020-26117
CVE-2020-2732
CVE-2020-6097
CVE-2020-7053
CVE-2020-8428
CVE-2020-8648
CVE-2020-8992
openSUSE-SU-2019:1793-1
openSUSE-SU-2019:2233-1
openSUSE-SU-2020:0117-1
openSUSE-SU-2020:0720-1
openSUSE-SU-2020:1736-1
SUSE-SU-2020:1805-1
SUSE-SU-2020:1899-1
SUSE-SU-2020:2881-1
Platform(s):openSUSE Leap 15.1
openSUSE Leap 15.2
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-ESPOS
SUSE Linux Enterprise Server 12 SP4-LTSS
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND teeworlds-0.7.3.1-lp151.2.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND atftp-0.7.2-lp152.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • ntp-4.2.8p15-88 is installed
  • OR ntp-doc-4.2.8p15-88 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-ESPOS is installed
  • AND Package Information
  • libxerces-c-3_1-3.1.1-13.3 is installed
  • OR libxerces-c-3_1-32bit-3.1.1-13.3 is installed
  • OR xerces-c-3.1.1-13.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-LTSS is installed
  • AND Package Information
  • MozillaFirefox-78.0.1-112.3 is installed
  • OR MozillaFirefox-branding-SLE-78-35.3 is installed
  • OR MozillaFirefox-devel-78.0.1-112.3 is installed
  • OR MozillaFirefox-translations-common-78.0.1-112.3 is installed
    • BACK