Fedora 22: FEDORA-2016-6f783d1768 Critical Chrony Impersonation Risk
fedora
February 2, 2016
Security fix for CVE-2016-1567
Summary
A client/server for the Network Time Protocol, this program keeps your
computer's clock accurate. It was specially designed to support
systems with intermittent internet connections, but it also works well
in permanently connected environments. It can use also hardware reference
clocks, system real-time clock or manual input as time references.
Update Information:
Security fix for CVE-2016-1567
Topics Covered
Change Log
References
[ 1 ] Bug #1297472 - CVE-2016-1567 chrony: missing key check allows impersonation between authenticated peers (VU#357792)
https://bugzilla.redhat.com/show_bug.cgi?id=1297472
Update Instructions
This update can be installed with the "yum" update program. Use su -c 'yum update chrony' at the command line. For more information, refer to "Managing Software with yum", available at .
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: chrony
Product: Fedora 22
Version: 2.1.1
Release: 2.fc22
URL: Summary : An NTP client/server
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!