CVE 2016-2516
NTP before 4.2.8p7 and 4.3.x before 4.3.92, when mode7 is enabled, allows remote attackers to cause a denial of service (ntpd abort) by using the same IP address multiple times in an unconfig directive.
Related bugs and status
CVE-2016-2516 (Candidate) is related to these bugs:
Bug #1528050: NTP statsdir cleanup cronjob insecure
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1528050 | NTP statsdir cleanup cronjob insecure | ntp (Ubuntu) | Undecided | Fix Released | ||
1528050 | NTP statsdir cleanup cronjob insecure | ntp (Ubuntu Wily) | Undecided | Won't Fix | ||
1528050 | NTP statsdir cleanup cronjob insecure | ntp (Ubuntu Xenial) | Undecided | Fix Released |
Bug #1567540: ntpd crashed with SIGABRT (was: ntp crashes everytime the network goes up or down.)
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1567540 | ntpd crashed with SIGABRT (was: ntp crashes everytime the network goes up or down.) | ntp (Ubuntu) | High | Fix Released | ||
1567540 | ntpd crashed with SIGABRT (was: ntp crashes everytime the network goes up or down.) | NTP | High | Fix Released | ||
1567540 | ntpd crashed with SIGABRT (was: ntp crashes everytime the network goes up or down.) | ntp (Ubuntu Xenial) | High | Fix Released |
Bug #1582767: apparmor permissions missing for winbind
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1582767 | apparmor permissions missing for winbind | ntp (Ubuntu) | Medium | Fix Released | ||
1582767 | apparmor permissions missing for winbind | ntp (Ubuntu Xenial) | Undecided | Won't Fix | ||
1582767 | apparmor permissions missing for winbind | ntp (Debian) | Unknown | Fix Released |
Bug #1625372: NTP security issues on Precise and Trusty
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1625372 | NTP security issues on Precise and Trusty | ntp (Ubuntu) | Undecided | Fix Released |
See the
CVE page on Mitre.org
for more details.