Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Gentoo: 201001-01 Alert: Risk of NTP Denial of Service Attack

gentoo
Calendar Grey January 3, 2010
Dist Gentoo Esm H88
A critical DoS vulnerability in NTP affects versions < 4.2.8p15. Upgrade to the latest version to ensure system security and reliability
A Denial of Service condition in ntpd can cause excessive CPU or bandwidth consumption.

Summary

Robin Park and Dmitri Vinokurov discovered that ntp_request.c in ntpd does not handle MODE_PRIVATE packets correctly, causing a continuous exchange of MODE_PRIVATE error responses between two NTP daemons or causing high CPU load on a single host.

Topics%20covered

Topics Covered

security advisory denial of service software update Gentoo Linux normal severity NTP service impact

Resolution

All NTP users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=net-misc/ntp-4.2.4_p7-r1"

References

[ 1 ] CVE-2009-3563 https://www.cve.org/CVERecord?id=CVE-2009-3563

Availability

This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/201001-01
style>.gentoo_availability{display:block;}

Concerns

Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org.

Severity: Normal
Title: NTP: Denial of Service
Date: January 03, 2010
Bugs: #290881
ID: 201001-01

Topics%20covered

Topics Covered

security advisory denial of service software update Gentoo Linux normal severity NTP service impact

Synopsis

A Denial of Service condition in ntpd can cause excessive CPU or bandwidth consumption.

Background

NTP is a set of the Network Time Protocol programs.

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-misc/ntp < 4.2.4_p7-r1 >= 4.2.4_p7-r1

Impact

===== A remote, unauthenticated attacker could send a specially crafted MODE_PRIVATE packet, allowing for a Denial of Service condition (CPU and bandwidth consumption).

Workaround

There is no known workaround at this time.

Related News

Your message here