Security update for ntp SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2018:3342-1 Final 1 1 2018-10-23T14:44:19Z current 2018-10-23T14:44:19Z 2018-10-23T14:44:19Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for ntp NTP was updated to 4.2.8p12 (bsc#1111853): - CVE-2018-12327: Fixed stack buffer overflow in the openhost() command-line call of NTPQ/NTPDC. (bsc#1098531) - CVE-2018-7170: Add further tweaks to improve the fix for the ephemeral association time spoofing additional protection (bsc#1083424) Please also see https://www.nwtime.org/network-time-foundation-publishes-ntp-4-2-8p12/ for more information. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-OpenStack-Cloud-7-2018-2404,SUSE-SLE-DESKTOP-12-SP3-2018-2404,SUSE-SLE-SAP-12-SP2-2018-2404,SUSE-SLE-SERVER-12-SP1-2018-2404,SUSE-SLE-SERVER-12-SP2-2018-2404,SUSE-SLE-SERVER-12-SP2-BCL-2018-2404,SUSE-SLE-SERVER-12-SP3-2018-2404,SUSE-Storage-4-2018-2404 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2018/suse-su-20183342-1/ Link for SUSE-SU-2018:3342-1 https://lists.suse.com/pipermail/sle-security-updates/2018-October/004771.html E-Mail link for SUSE-SU-2018:3342-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1083424 SUSE Bug 1083424 https://bugzilla.suse.com/1098531 SUSE Bug 1098531 https://bugzilla.suse.com/1111853 SUSE Bug 1111853 https://www.suse.com/security/cve/CVE-2018-12327/ SUSE CVE CVE-2018-12327 page https://www.suse.com/security/cve/CVE-2018-7170/ SUSE CVE CVE-2018-7170 page SUSE Enterprise Storage 4 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE OpenStack Cloud 7 ntp-4.2.8p12-64.8.2 ntp-doc-4.2.8p12-64.8.2 ntp-4.2.8p12-64.8.2 as a component of SUSE Enterprise Storage 4 ntp-doc-4.2.8p12-64.8.2 as a component of SUSE Enterprise Storage 4 ntp-4.2.8p12-64.8.2 as a component of SUSE Linux Enterprise Desktop 12 SP3 ntp-doc-4.2.8p12-64.8.2 as a component of SUSE Linux Enterprise Desktop 12 SP3 ntp-4.2.8p12-64.8.2 as a component of SUSE Linux Enterprise Server 12 SP1-LTSS ntp-doc-4.2.8p12-64.8.2 as a component of SUSE Linux Enterprise Server 12 SP1-LTSS ntp-4.2.8p12-64.8.2 as a component of SUSE Linux Enterprise Server 12 SP2-BCL ntp-doc-4.2.8p12-64.8.2 as a component of SUSE Linux Enterprise Server 12 SP2-BCL ntp-4.2.8p12-64.8.2 as a component of SUSE Linux Enterprise Server 12 SP2-LTSS ntp-doc-4.2.8p12-64.8.2 as a component of SUSE Linux Enterprise Server 12 SP2-LTSS ntp-4.2.8p12-64.8.2 as a component of SUSE Linux Enterprise Server 12 SP3 ntp-doc-4.2.8p12-64.8.2 as a component of SUSE Linux Enterprise Server 12 SP3 ntp-4.2.8p12-64.8.2 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP2 ntp-doc-4.2.8p12-64.8.2 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP2 ntp-4.2.8p12-64.8.2 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP3 ntp-doc-4.2.8p12-64.8.2 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP3 ntp-4.2.8p12-64.8.2 as a component of SUSE OpenStack Cloud 7 ntp-doc-4.2.8p12-64.8.2 as a component of SUSE OpenStack Cloud 7 Stack-based buffer overflow in ntpq and ntpdc of NTP version 4.2.8p11 allows an attacker to achieve code execution or escalate to higher privileges via a long string as the argument for an IPv4 or IPv6 command-line parameter. NOTE: It is unclear whether there are any common situations in which ntpq or ntpdc is used with a command line from an untrusted source. CVE-2018-12327 SUSE Enterprise Storage 4:ntp-4.2.8p12-64.8.2 SUSE Enterprise Storage 4:ntp-doc-4.2.8p12-64.8.2 SUSE Linux Enterprise Desktop 12 SP3:ntp-4.2.8p12-64.8.2 SUSE Linux Enterprise Desktop 12 SP3:ntp-doc-4.2.8p12-64.8.2 SUSE Linux Enterprise Server 12 SP1-LTSS:ntp-4.2.8p12-64.8.2 SUSE Linux Enterprise Server 12 SP1-LTSS:ntp-doc-4.2.8p12-64.8.2 SUSE Linux Enterprise Server 12 SP2-BCL:ntp-4.2.8p12-64.8.2 SUSE Linux Enterprise Server 12 SP2-BCL:ntp-doc-4.2.8p12-64.8.2 SUSE Linux Enterprise Server 12 SP2-LTSS:ntp-4.2.8p12-64.8.2 SUSE Linux Enterprise Server 12 SP2-LTSS:ntp-doc-4.2.8p12-64.8.2 SUSE Linux Enterprise Server 12 SP3:ntp-4.2.8p12-64.8.2 SUSE Linux Enterprise Server 12 SP3:ntp-doc-4.2.8p12-64.8.2 SUSE Linux Enterprise Server for SAP Applications 12 SP2:ntp-4.2.8p12-64.8.2 SUSE Linux Enterprise Server for SAP Applications 12 SP2:ntp-doc-4.2.8p12-64.8.2 SUSE Linux Enterprise Server for SAP Applications 12 SP3:ntp-4.2.8p12-64.8.2 SUSE Linux Enterprise Server for SAP Applications 12 SP3:ntp-doc-4.2.8p12-64.8.2 SUSE OpenStack Cloud 7:ntp-4.2.8p12-64.8.2 SUSE OpenStack Cloud 7:ntp-doc-4.2.8p12-64.8.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20183342-1/ https://www.suse.com/security/cve/CVE-2018-12327.html CVE-2018-12327 https://bugzilla.suse.com/1098531 SUSE Bug 1098531 https://bugzilla.suse.com/1107887 SUSE Bug 1107887 https://bugzilla.suse.com/1111552 SUSE Bug 1111552 https://bugzilla.suse.com/1111853 SUSE Bug 1111853 https://bugzilla.suse.com/1155513 SUSE Bug 1155513 ntpd in ntp 4.2.x before 4.2.8p7 and 4.3.x before 4.3.92 allows authenticated users that know the private symmetric key to create arbitrarily-many ephemeral associations in order to win the clock selection of ntpd and modify a victim's clock via a Sybil attack. This issue exists because of an incomplete fix for CVE-2016-1549. CVE-2018-7170 SUSE Enterprise Storage 4:ntp-4.2.8p12-64.8.2 SUSE Enterprise Storage 4:ntp-doc-4.2.8p12-64.8.2 SUSE Linux Enterprise Desktop 12 SP3:ntp-4.2.8p12-64.8.2 SUSE Linux Enterprise Desktop 12 SP3:ntp-doc-4.2.8p12-64.8.2 SUSE Linux Enterprise Server 12 SP1-LTSS:ntp-4.2.8p12-64.8.2 SUSE Linux Enterprise Server 12 SP1-LTSS:ntp-doc-4.2.8p12-64.8.2 SUSE Linux Enterprise Server 12 SP2-BCL:ntp-4.2.8p12-64.8.2 SUSE Linux Enterprise Server 12 SP2-BCL:ntp-doc-4.2.8p12-64.8.2 SUSE Linux Enterprise Server 12 SP2-LTSS:ntp-4.2.8p12-64.8.2 SUSE Linux Enterprise Server 12 SP2-LTSS:ntp-doc-4.2.8p12-64.8.2 SUSE Linux Enterprise Server 12 SP3:ntp-4.2.8p12-64.8.2 SUSE Linux Enterprise Server 12 SP3:ntp-doc-4.2.8p12-64.8.2 SUSE Linux Enterprise Server for SAP Applications 12 SP2:ntp-4.2.8p12-64.8.2 SUSE Linux Enterprise Server for SAP Applications 12 SP2:ntp-doc-4.2.8p12-64.8.2 SUSE Linux Enterprise Server for SAP Applications 12 SP3:ntp-4.2.8p12-64.8.2 SUSE Linux Enterprise Server for SAP Applications 12 SP3:ntp-doc-4.2.8p12-64.8.2 SUSE OpenStack Cloud 7:ntp-4.2.8p12-64.8.2 SUSE OpenStack Cloud 7:ntp-doc-4.2.8p12-64.8.2 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20183342-1/ https://www.suse.com/security/cve/CVE-2018-7170.html CVE-2018-7170 https://bugzilla.suse.com/1082210 SUSE Bug 1082210 https://bugzilla.suse.com/1083424 SUSE Bug 1083424 https://bugzilla.suse.com/1087324 SUSE Bug 1087324 https://bugzilla.suse.com/1098531 SUSE Bug 1098531 https://bugzilla.suse.com/1155513 SUSE Bug 1155513