Test ID:	1.3.6.1.4.1.25623.1.1.13.2015.302.03
Category:	Slackware Local Security Checks
Title:	Slackware: Security Advisory (SSA:2015-302-03)
Summary:	The remote host is missing an update for the 'ntp' package(s) announced via the SSA:2015-302-03 advisory.
Description:	Summary: The remote host is missing an update for the 'ntp' package(s) announced via the SSA:2015-302-03 advisory. Vulnerability Insight: New ntp packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: +--------------------------+ patches/packages/ntp-4.2.8p4-i486-1_slack14.1.txz: Upgraded. In addition to bug fixes and enhancements, this release fixes several low and medium severity vulnerabilities. For more information, see: [links moved to references] (* Security fix *) +--------------------------+ Affected Software/OS: 'ntp' package(s) on Slackware 13.0, Slackware 13.1, Slackware 13.37, Slackware 14.0, Slackware 14.1, Slackware current. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2014-9750 BugTraq ID: 72583 http://www.securityfocus.com/bid/72583 CERT/CC vulnerability note: VU#852879 http://www.kb.cert.org/vuls/id/852879 Debian Security Information: DSA-3388 (Google Search) http://www.debian.org/security/2015/dsa-3388 RedHat Security Advisories: RHSA-2015:1459 http://rhn.redhat.com/errata/RHSA-2015-1459.html Common Vulnerability Exposure (CVE) ID: CVE-2015-5196 Common Vulnerability Exposure (CVE) ID: CVE-2015-7691 BugTraq ID: 77274 http://www.securityfocus.com/bid/77274 https://security.gentoo.org/glsa/201607-15 RedHat Security Advisories: RHSA-2016:0780 http://rhn.redhat.com/errata/RHSA-2016-0780.html RedHat Security Advisories: RHSA-2016:2583 http://rhn.redhat.com/errata/RHSA-2016-2583.html http://www.securitytracker.com/id/1033951 Common Vulnerability Exposure (CVE) ID: CVE-2015-7692 BugTraq ID: 77285 http://www.securityfocus.com/bid/77285 Common Vulnerability Exposure (CVE) ID: CVE-2015-7701 BugTraq ID: 77281 http://www.securityfocus.com/bid/77281 Common Vulnerability Exposure (CVE) ID: CVE-2015-7702 BugTraq ID: 77286 http://www.securityfocus.com/bid/77286 Common Vulnerability Exposure (CVE) ID: CVE-2015-7704 BugTraq ID: 77280 http://www.securityfocus.com/bid/77280 CERT/CC vulnerability note: VU#718152 https://www.kb.cert.org/vuls/id/718152 https://eprint.iacr.org/2015/1020.pdf https://www.arista.com/en/support/advisories-notices/security-advisories/1212-security-advisory-0016 https://www.cs.bu.edu/~goldbe/NTPattack.html RedHat Security Advisories: RHSA-2015:1930 http://rhn.redhat.com/errata/RHSA-2015-1930.html RedHat Security Advisories: RHSA-2015:2520 http://rhn.redhat.com/errata/RHSA-2015-2520.html Common Vulnerability Exposure (CVE) ID: CVE-2015-7705 BugTraq ID: 77284 http://www.securityfocus.com/bid/77284 Bugtraq: 20151022 Cisco Security Advisory: Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015 (Google Search) http://www.securityfocus.com/archive/1/536737/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/536737/100/100/threaded Bugtraq: 20151029 [slackware-security] ntp (SSA:2015-302-03) (Google Search) http://www.securityfocus.com/archive/1/536796/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/536796/100/100/threaded Cisco Security Advisory: 20151021 Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151021-ntp http://packetstormsecurity.com/files/134137/Slackware-Security-Advisory-ntp-Updates.html https://us-cert.cisa.gov/ics/advisories/icsa-21-103-11 https://us-cert.cisa.gov/ics/advisories/icsa-21-159-11 SuSE Security Announcement: SUSE-SU-2016:1247 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00020.html SuSE Security Announcement: SUSE-SU-2016:1278 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00034.html SuSE Security Announcement: SUSE-SU-2016:1291 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00037.html SuSE Security Announcement: SUSE-SU-2016:1311 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00048.html SuSE Security Announcement: SUSE-SU-2016:1471 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00001.html SuSE Security Announcement: SUSE-SU-2016:1568 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00020.html SuSE Security Announcement: SUSE-SU-2016:1912 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00026.html SuSE Security Announcement: SUSE-SU-2016:2094 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00042.html SuSE Security Announcement: openSUSE-SU-2015:2016 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-11/msg00093.html SuSE Security Announcement: openSUSE-SU-2016:1329 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00052.html SuSE Security Announcement: openSUSE-SU-2016:1423 (Google Search) http://lists.opensuse.org/opensuse-updates/2016-05/msg00114.html http://www.ubuntu.com/usn/USN-2783-1 Common Vulnerability Exposure (CVE) ID: CVE-2015-7848 BugTraq ID: 77275 http://www.securityfocus.com/bid/77275 http://www.talosintelligence.com/reports/TALOS-2015-0052/ Common Vulnerability Exposure (CVE) ID: CVE-2015-7849 BugTraq ID: 77276 http://www.securityfocus.com/bid/77276 Common Vulnerability Exposure (CVE) ID: CVE-2015-7850 BugTraq ID: 77279 http://www.securityfocus.com/bid/77279 Common Vulnerability Exposure (CVE) ID: CVE-2015-7851 http://support.ntp.org/bin/view/Main/NtpBug2918 http://support.ntp.org/bin/view/Main/SecurityNotice http://www.talosintel.com/reports/TALOS-2015-0062/ Common Vulnerability Exposure (CVE) ID: CVE-2015-7852 BugTraq ID: 77288 http://www.securityfocus.com/bid/77288 Common Vulnerability Exposure (CVE) ID: CVE-2015-7853 BugTraq ID: 77273 http://www.securityfocus.com/bid/77273 Bugtraq: 20151026 FreeBSD Security Advisory FreeBSD-SA-15:25.ntp (Google Search) http://www.securityfocus.com/archive/1/536760/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/536760/100/100/threaded Bugtraq: 20151104 FreeBSD Security Advisory FreeBSD-SA-15:25.ntp [REVISED] (Google Search) http://www.securityfocus.com/archive/1/536833/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/536833/100/100/threaded http://packetstormsecurity.com/files/134082/FreeBSD-Security-Advisory-ntp-Authentication-Bypass.html http://www.talosintel.com/vulnerability-reports/ Common Vulnerability Exposure (CVE) ID: CVE-2015-7854 BugTraq ID: 77277 http://www.securityfocus.com/bid/77277 Common Vulnerability Exposure (CVE) ID: CVE-2015-7855 BugTraq ID: 77283 http://www.securityfocus.com/bid/77283 https://www.exploit-db.com/exploits/40840/ Common Vulnerability Exposure (CVE) ID: CVE-2015-7871 BugTraq ID: 77287 http://www.securityfocus.com/bid/77287 https://security.gentoo.org/glsa/201604-03
Copyright	Copyright (C) 2022 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.