[Secure-testing-commits] r36287 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Aug 25 09:40:30 UTC 2015
Author: carnil
Date: 2015-08-25 09:40:30 +0000 (Tue, 25 Aug 2015)
New Revision: 36287
Modified:
data/CVE/list
Log:
Add four new ntp issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-08-25 08:36:10 UTC (rev 36286)
+++ data/CVE/list 2015-08-25 09:40:30 UTC (rev 36287)
@@ -3440,8 +3440,11 @@
NOTE: http://www.openwall.com/lists/oss-security/2015/08/20/4
CVE-2015-5220
RESERVED
-CVE-2015-5219
+CVE-2015-5219 [infinite loop in sntp processing crafted packet]
RESERVED
+ - ntp <unfixed>
+ NOTE: https://github.com/ntp-project/ntp/commit/5f295cd05c3c136d39f5b3e500a2d781bdbb59c8
+ TODO: check
CVE-2015-5218
RESERVED
CVE-2015-5217
@@ -3495,12 +3498,21 @@
RESERVED
CVE-2015-5197
RESERVED
-CVE-2015-5196
+CVE-2015-5196 [config command can be used to set the pidfile and drift file paths]
RESERVED
-CVE-2015-5195
+ - ntp <unfixed>
+ NOTE: Patch attached to http://www.openwall.com/lists/oss-security/2015/08/25/3
+ TODO: check
+CVE-2015-5195 [ntpd crash when processing config commands with statistics type]
RESERVED
-CVE-2015-5194
+ - ntp <unfixed>
+ NOTE: https://github.com/ntp-project/ntp/commit/52e977d79a0c4ace997e5c74af429844da2f27be
+ TODO: check
+CVE-2015-5194 [crash with crafted logconfig configuration command]
RESERVED
+ - ntp <unfixed>
+ NOTE: https://github.com/ntp-project/ntp/commit/553f2fa65865c31c5e3c48812cfd46176cffdd27
+ TODO: check
CVE-2015-5193
REJECTED
CVE-2015-5192
More information about the Secure-testing-commits
mailing list