[Secure-testing-commits] r46492 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Nov 23 20:23:48 UTC 2016


Author: carnil
Date: 2016-11-23 20:23:48 +0000 (Wed, 23 Nov 2016)
New Revision: 46492

Modified:
   data/CVE/list
Log:
Update status for CVE-2016-7427/ntp

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-11-23 20:15:08 UTC (rev 46491)
+++ data/CVE/list	2016-11-23 20:23:48 UTC (rev 46492)
@@ -6438,7 +6438,12 @@
 CVE-2016-7427
 	RESERVED
 	- ntp 1:4.2.8p9+dfsg-1
+	[jessie] - ntp <not-affected> (Vulnerable code not present)
+	[wheezy] - ntp <not-affected> (Vulnerable code not present)
 	NOTE: http://support.ntp.org/bin/view/Main/NtpBug3114
+	NOTE: The fixes for CVE-2015-7973 have added several new integrity checks on incoming
+	NOTE: broadcast mode packets and issue got introduced with code changes to fix that
+	NOTE: issue.
 CVE-2016-7426
 	RESERVED
 	- ntp 1:4.2.8p9+dfsg-1




More information about the Secure-testing-commits mailing list