FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

ntp -- multiple vulnerabilities

Affected packages
ntp < 4.2.8p6
ntp-devel < 4.3.90

Details

VuXML ID 5237f5d7-c020-11e5-b397-d050996490d0
Discovery 2016-01-20
Entry 2016-01-21

Network Time Foundation reports:

NTF's NTP Project has been notified of the following low- and medium-severity vulnerabilities that are fixed in ntp-4.2.8p6, released on Tuesday, 19 January 2016:

Additionally, mitigations are published for the following two issues:

References

CVE Name CVE-2015-7973
CVE Name CVE-2015-7974
CVE Name CVE-2015-7975
CVE Name CVE-2015-7976
CVE Name CVE-2015-7977
CVE Name CVE-2015-7978
CVE Name CVE-2015-7979
CVE Name CVE-2015-8138
CVE Name CVE-2015-8139
CVE Name CVE-2015-8140
CVE Name CVE-2015-8158
URL http://support.ntp.org/bin/view/Main/SecurityNotice#January_2016_NTP_4_2_8p6_Securit