[Secure-testing-commits] r37318 - data/CVE
Kurt Roeckx
kroeckx at moszumanska.debian.org
Sun Oct 25 13:43:04 UTC 2015
Author: kroeckx
Date: 2015-10-25 13:43:04 +0000 (Sun, 25 Oct 2015)
New Revision: 37318
Modified:
data/CVE/list
Log:
ntp: CVE-2015-7705: 4.2.6 version don't have the "limited" restriction in the default ntp.conf
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-10-25 13:40:14 UTC (rev 37317)
+++ data/CVE/list 2015-10-25 13:43:04 UTC (rev 37318)
@@ -672,6 +672,9 @@
CVE-2015-7705
RESERVED
- ntp <unfixed>
+ [squeeze] - ntp <no-dsa> (Default config not affected)
+ [wheezy] - ntp <no-dsa> (Default config not affected)
+ [jessie] - ntp <no-dsa> (Default config not affected)
NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#October_2015_NTP_Security_Vulner
NOTE: https://github.com/ntp-project/ntp/commit/21d57dc336dbe9a975baca5ce5ae4da5b71ff123
NOTE: https://github.com/ntp-project/ntp/commit/492758c3d0690d3ccf7130fabfcf670997f12f7b
More information about the Secure-testing-commits
mailing list