CVE

Id
79076  
CVE No.
CVE-2015-1799  
Status
Candidate  
Description
The symmetric-key feature in the receive function in ntp_proto.c in ntpd in NTP 3.x and 4.x before 4.2.8p2 performs state-variable updates upon receiving certain invalid packets, which makes it easier for man-in-the-middle attackers to cause a denial of service (synchronization loss) by spoofing the source IP address of a peer.  
Phase
Assigned (20150217)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
720328 79076 CVE-2015-1799 MLIST:[chrony-announce] 20150407 chrony-1.31.1 released (security)  View
720329 79076 CVE-2015-1799 URL:http://listengine.tuxfamily.org/chrony.tuxfamily.org/chrony-announce/2015/04/msg00002.html  View
720330 79076 CVE-2015-1799 CONFIRM:http://bugs.ntp.org/show_bug.cgi?id=2781  View
720331 79076 CVE-2015-1799 CONFIRM:http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities  View
720332 79076 CVE-2015-1799 CONFIRM:https://kc.mcafee.com/corporate/index?page=content&id=SB10114  View
720333 79076 CVE-2015-1799 CONFIRM:http://support.apple.com/kb/HT204942  View
720334 79076 CVE-2015-1799 CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html  View
720335 79076 CVE-2015-1799 CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html  View
720336 79076 CVE-2015-1799 APPLE:APPLE-SA-2015-06-30-2  View
720337 79076 CVE-2015-1799 URL:http://lists.apple.com/archives/security-announce/2015/Jun/msg00002.html  View
720338 79076 CVE-2015-1799 CISCO:20150408 Multiple Vulnerabilities in ntpd (April 2015) Affecting Cisco Products  View
720339 79076 CVE-2015-1799 URL:http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150408-ntpd  View
720340 79076 CVE-2015-1799 CISCO:20150408 Network Time Protocol Daemon Symmetric Mode Packet Processing Denial of Service Vulnerability  View
720341 79076 CVE-2015-1799 URL:http://tools.cisco.com/security/center/viewAlert.x?alertId=38275  View
720342 79076 CVE-2015-1799 DEBIAN:DSA-3222  View
720343 79076 CVE-2015-1799 URL:http://www.debian.org/security/2015/dsa-3222  View
720344 79076 CVE-2015-1799 DEBIAN:DSA-3223  View
720345 79076 CVE-2015-1799 URL:http://www.debian.org/security/2015/dsa-3223  View
720346 79076 CVE-2015-1799 FEDORA:FEDORA-2015-5761  View
720347 79076 CVE-2015-1799 URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155864.html  View
720348 79076 CVE-2015-1799 FEDORA:FEDORA-2015-5874  View
720349 79076 CVE-2015-1799 URL:http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155863.html  View
720350 79076 CVE-2015-1799 HP:HPSBHF03557  View
720351 79076 CVE-2015-1799 URL:http://marc.info/?l=bugtraq&m=145750740530849&w=2  View
720352 79076 CVE-2015-1799 HP:HPSBUX03333  View
720353 79076 CVE-2015-1799 URL:http://marc.info/?l=bugtraq&m=143213867103400&w=2  View
720354 79076 CVE-2015-1799 HP:SSRT102029  View
720355 79076 CVE-2015-1799 URL:http://marc.info/?l=bugtraq&m=143213867103400&w=2  View
720356 79076 CVE-2015-1799 MANDRIVA:MDVSA-2015:202  View
720357 79076 CVE-2015-1799 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2015:202  View
720358 79076 CVE-2015-1799 SUSE:openSUSE-SU-2015:0775  View
720359 79076 CVE-2015-1799 URL:http://lists.opensuse.org/opensuse-updates/2015-04/msg00052.html  View
720360 79076 CVE-2015-1799 UBUNTU:USN-2567-1  View
720361 79076 CVE-2015-1799 URL:http://www.ubuntu.com/usn/USN-2567-1  View
720362 79076 CVE-2015-1799 CERT-VN:VU#374268  View
720363 79076 CVE-2015-1799 URL:http://www.kb.cert.org/vuls/id/374268  View
720364 79076 CVE-2015-1799 BID:73950  View
720365 79076 CVE-2015-1799 URL:http://www.securityfocus.com/bid/73950  View
720366 79076 CVE-2015-1799 SECTRACK:1032031  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
7956 JVNDB-2015-003276 OpenStack Cinder における任意のファイルを読まれる脆弱性 OpenStack Cinder には、任意のファイルを読まれる脆弱性が存在します。 CVE-2015-1851 79076 6.8 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-003276.html  View