Vous êtes ici: index » cert » avis

Avis du CERT RENATER

Par défaut, cette page vous affichera les derniers messages envoyés par le CERT RENATER à la communauté. Vous pouvez affiner par année ou par type de message. Si aucun critère n'est précisé, seuls les derniers messages sont affichés

Date : Wed, 27 Jan 2016 15:55:14 +0100
Type : VULN
Sujet : CERT-Renater : 2016/VULN036 (NTP : January 2016 NTP-4.2.8p6 Security Vulnerability Announcement)
===================================================================
                                 CERT-Renater

                    Note d'Information No. 2016/VULN036
_____________________________________________________________________

DATE                : 27/01/2016

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running NTP versions prior to 4.2.8p6.

======================================================================
http://support.ntp.org/bin/view/Main/SecurityNotice#January_2016_NTP_4_2_8p6_Securit
_____________________________________________________________________

January 2016 NTP-4.2.8p6 Security Vulnerability Announcement (Medium)

NTF's NTP Project has been notified of the following low- and
medium-severity vulnerabilities that are fixed in ntp-4.2.8p6,
released on Tuesday, 19 January 2016:

     Bug 2948 / CVE-2015-8158: Potential Infinite Loop in ntpq
         Reported by Cisco ASIG
     Bug 2945 / CVE-2015-8138: origin: Zero Origin Timestamp Bypass
         Reported by Cisco ASIG
     Bug 2942 / CVE-2015-7979: Off-path Denial of Service (DoS) attack
         on authenticated broadcast mode
         Reported by Cisco ASIG
     Bug 2940 / CVE-2015-7978: Stack exhaustion in recursive traversal
         of restriction list
         Reported by Cisco ASIG
     Bug 2939 / CVE-2015-7977: reslist NULL pointer dereference
         Reported by Cisco ASIG
     Bug 2938 / CVE-2015-7976: ntpq saveconfig command allows dangerous
         characters in filenames
         Reported by Cisco ASIG
     Bug 2937 / CVE-2015-7975: nextvar() missing length check
         Reported by Cisco ASIG
     Bug 2936 / CVE-2015-7974: Skeleton Key: Missing key check allows
         impersonation between authenticated peers
         Reported by Cisco ASIG
     Bug 2935 / CVE-2015-7973: Deja Vu: Replay attack on authenticated
         broadcast mode
         Reported by Cisco ASIG.

Additionally, mitigations are published for the following two issues:

     Bug 2947 / CVE-2015-8140: ntpq vulnerable to replay attacks
         Reported by Cisco ASIG
     Bug 2946 / CVE-2015-8139: Origin Leak: ntpq and ntpdc, disclose
         origin
         Reported by Cisco ASIG

Timeline:

     160119: ntp-4.2.8p6 released.
     160118: pre-release patch availability announced to CERT.
     160118: CERT notified.
     160117: pre-release patches sent to authorized NTP Consortium
             members.
     151123: CVE numbers requested from Mitre.
     151105: Advance notification sent to authorized NTP Consortium
             members.
     151016: Initial notification from Cisco. Analysis begins.


==========================================================
Serveur de référence du CERT-Renater
https://services.renater.fr/ssi/
==========================================================
+ CERT-RENATER          | tel : 01-53-94-20-44           +
+ 23 - 25 Rue Daviel    | fax : 01-53-94-20-41           +
+ 75013 Paris           | email: cert@support.renater.fr +
==========================================================

[An attachment of type application/pkcs7-signature was included here]