Univention Bugzilla – Bug 38245
ntp: Multiple issues (3.2)
Last modified: 2015-07-16 15:11:23 CEST
Man-in-the-middle attackers may spoof packets by omitting the MAC because the symmetric-key feature in the receive function in ntp_proto.c requires a correct MAC only if the MAC field has a nonzero length (CVE-2015-1798) Man-in-the-middle attackers may cause a denial of service (synchronization loss) by spoofing the source IP address of a peer because the symmetric-key feature in the receive function in ntp_proto.c performs state-variable updates upon receiving certain invalid packets (CVE-2015-1799)
Fixed in upstream Debian package version 1:4.2.6.p2+dfsg-1+deb6u3
Tests (i386): OK Advisory: 2015-06-05-ntp.yaml
r61218 | Bug #38245 ntp: Fix YAML Fix wrong bug reference: 3[6→8]245
OK: ucr set timeserver{=0,2=2,3=3}.debian.pool.ntp.org OK: ntpq -p OK: ntpdate 10.200.17.24 <-> 10.200.17.25 OK: i386 amd64 OK: /usr/share/doc/ntp/changelog.Debian.gz OK: 1:4.2.6.p2+dfsg-1+deb6u3 OK: CVE-2015-1798 OK: CVE-2015-1799 FIXED: 2015-06-05-ntp.yaml → r61585 OK: errata-announce -V 2015-06-05-ntp.yaml
<http://errata.univention.de/ucs/3.2/343.html>