New Search

ELSA-2014-2024 -- ntp security update (important)

oval:org.mitre.oval:def:28304

[4.2.6p5-2] - don't generate weak control key for resolver (CVE-2014-9293) - don't generate weak MD5 keys in ntp-keygen (CVE-2014-9294) - fix buffer overflows via specially-crafted packets (CVE-2014-9295) - don't mobilize passive association when authentication fails (CVE-2014-9296)

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Oracle Linux 6
  • Oracle Linux 7
Class:
patch
Reference(s):
  • ELSA-2014-2024
  • CVE-2014-9293
  • CVE-2014-9294
  • CVE-2014-9295
  • CVE-2014-9296
Product(s):
  • ntp