Login
Login-Name Passwort


 
Newsletter
Werbung

Sicherheit: Mehrere Probleme in NTP
Aktuelle Meldungen Distributionen
Name: Mehrere Probleme in NTP
ID: FEDORA-2017-20d54b2782
Distribution: Fedora
Plattformen: Fedora 26
Datum: So, 2. April 2017, 22:14
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6464
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6460
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6462
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6451
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6463
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9042
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6458

Originalnachricht

Name        : ntp
Product : Fedora 26
Version : 4.2.8p10
Release : 1.fc26
URL : http://www.ntp.org
Summary : The NTP daemon and utilities
Description :
The Network Time Protocol (NTP) is used to synchronize a computer's
time with another reference time source. This package includes ntpd
(a daemon which continuously adjusts system time) and utilities used
to query and configure the ntpd daemon.

Perl scripts are in the ntp-perl package, ntpdate is in the ntpdate
package and sntp is in the sntp package. The documentation in HTML
format is in the ntp-doc package.

-------------------------------------------------------------------------------
-
Update Information:

Security fix for CVE-2017-6464 CVE-2017-6462 CVE-2017-6463 CVE-2017-6458
CVE-2017-6451 CVE-2017-6460 CVE-2016-9042. ---- This update improves the
default configuration file to use the pool directive. It also replaces the
ntpstat program with a shell script that uses the ntpq program instead of
implementing the mode 6 protocol.
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #1435163 - CVE-2017-6464 CVE-2017-6462 CVE-2017-6463 CVE-2017-6458
CVE-2017-6451 ntp: various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1435163
-------------------------------------------------------------------------------
-

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade ntp' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Pro-Linux
Traut euch!
Neue Nachrichten
Werbung