Fedora Core 9 FEDORA-2009-5275 (ntp) Network Vulnerability

Summary

The remote host is missing an update to ntp announced via advisory FEDORA-2009-5275.

Solution

Apply the appropriate updates. This update can be installed with the yum update program. Use su -c 'yum update ntp' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/. https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-5275

Insight

Update Information: This update fixes a denial of service issue if autokey is enabled (default is disabled) and a crash in ntpq. ChangeLog: * Tue May 19 2009 Miroslav Lichvar 4.2.4p7-1.fc9 - update to 4.2.4p7 (CVE-2009-1252, CVE-2009-0159) - don't log STA_MODE changes

References

https://bugzilla.redhat.com/show_bug.cgi?id=490617
https://bugzilla.redhat.com/show_bug.cgi?id=499694

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-0021, CVE-2009-0159, CVE-2009-1252
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Fedora Core 10 FEDORA-2008-11484 (zoneminder)
Fedora Core 10 FEDORA-2009-2131 (mingw32-libpng)
Fedora Core 10 FEDORA-2009-10956 (python-4Suite-XML)
Fedora Core 10 FEDORA-2009-11029 (expat)
Fedora Core 10 FEDORA-2009-2419 (knetworkmanager)

Take action and discover your vulnerabilities