LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

ntp: signature verification vulnerability

Package(s):ntp CVE #(s):CVE-2009-0021
Created:January 9, 2009 Updated:April 10, 2009
Description: From the Ubuntu advisory: It was discovered that NTP did not properly perform signature verification. A remote attacker could exploit this to bypass certificate validation via a malformed SSL/TLS signature.
Alerts:
CentOS CESA-2009:0046 2009-04-09
Gentoo 200904-05 2009-04-05
SuSE SUSE-SR:2009:005 2009-03-02
Slackware SSA:2009-014-03 2009-01-15
Red Hat RHSA-2009:0046-01 2009-01-29
rPath rPSA-2009-0010-1 2009-01-20
Debian DSA-1702-1 2009-01-12
Ubuntu USN-705-1 2009-01-08
Mandriva MDVSA-2009:007 2009-01-13
Fedora FEDORA-2009-0544 2009-01-14
Fedora FEDORA-2009-0547 2009-01-14
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds