[Git][security-tracker-team/security-tracker][master] LTS/triage CVE-2014-5209/ntp

[Roberto C. Sánchez]

Roberto C. Sánchez pushed to branch master at Debian Security Tracker / security-tracker


Commits:
27df1112 by Roberto C. Sánchez at 2020-02-14T14:56:49-05:00
LTS/triage CVE-2014-5209/ntp

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -250541,8 +250541,11 @@ CVE-2014-5210 (The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allo
 	NOT-FOR-US: AlienVault OSSIM
 CVE-2014-5209 (An Information Disclosure vulnerability exists in NTP 4.2.7p25 private ...)
 	- ntp 1:4.2.8p3+dfsg-1
+	[jessie] - ntp <ignored> (can be worked around by disabling mode in configuration)
 	NOTE: Starting with 4.2.8, mode 7 is marked as deprecated and disabled by default,
 	NOTE:   treat this as the fixed version here
+	NOTE: http://bk.ntp.org/ntp-stable/?PAGE=patch&REV=4eae26a46gF81Tr6RRrYnf6jWhVo0g
+	NOTE: http://bk.ntp.org/ntp-stable/?PAGE=patch&REV=4eb4b512O-jx-s-epS2A75g9mitvfQ
 CVE-2014-5208 (BKBCopyD.exe in the Batch Management Packages in Yokogawa CENTUM CS 30 ...)
 	NOT-FOR-US: Batch Management Packages in Yokogawa and Exaopc
 CVE-2014-5202 (Cross-site scripting (XSS) vulnerability in compfight-search.php in th ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/27df11126a45ff0984255e41a2a57ce7bc186b7f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/27df11126a45ff0984255e41a2a57ce7bc186b7f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200214/e0241041/attachment.html>