Security update for ntp

Announcement ID:	SUSE-SU-2016:3195-1
Rating:	moderate
References:	bsc#1009434 bsc#1011377 bsc#1011390 bsc#1011395 bsc#1011398 bsc#1011404 bsc#1011406 bsc#1011411 bsc#1011417 bsc#943216 bsc#956365 bsc#981252 bsc#988028 bsc#992038 bsc#992606
Cross-References:	CVE-2015-5219 CVE-2016-7426 CVE-2016-7427 CVE-2016-7428 CVE-2016-7429 CVE-2016-7431 CVE-2016-7433 CVE-2016-7434 CVE-2016-9310 CVE-2016-9311
CVSS scores:	CVE-2015-5219 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2015-5219 ( NVD ): 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2016-7426 ( NVD ): 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2016-7427 ( NVD ): 4.3 CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2016-7428 ( NVD ): 4.3 CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2016-7429 ( NVD ): 3.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2016-7431 ( NVD ): 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2016-7433 ( NVD ): 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2016-7434 ( NVD ): 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2016-9310 ( NVD ): 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L CVE-2016-9311 ( NVD ): 5.9 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products:	SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise High Performance Computing 12 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for the Raspberry Pi 12-SP2

An update that solves 10 vulnerabilities and has five security fixes can now be installed.

Description:

This update for ntp fixes the following issues:

ntp was updated to 4.2.8p9.

Security issues fixed:

• CVE-2016-9311, CVE-2016-9310, bsc#1011377: Mode 6 unauthenticated trap information disclosure and DDoS vector.
• CVE-2016-7427, bsc#1011390: Broadcast Mode Replay Prevention DoS.
• CVE-2016-7428, bsc#1011417: Broadcast Mode Poll Interval Enforcement DoS.
• CVE-2016-7431, bsc#1011395: Regression: 010-origin: Zero Origin Timestamp Bypass.
• CVE-2016-7434, bsc#1011398: Null pointer dereference in _IO_str_init_static_internal().
• CVE-2016-7429, bsc#1011404: Interface selection attack.
• CVE-2016-7426, bsc#1011406: Client rate limiting and server responses.
• CVE-2016-7433, bsc#1011411: Reboot sync calculation problem.
• CVE-2015-5219: An endless loop due to incorrect precision to double conversion (bsc#943216).

Non-security issues fixed:

• Fix a spurious error message.
• Other bugfixes, see /usr/share/doc/packages/ntp/ChangeLog.
• Fix a regression in "trap" (bsc#981252).
• Reduce the number of netlink groups to listen on for changes to the local network setup (bsc#992606).
• Fix segfault in "sntp -a" (bsc#1009434).
• Silence an OpenSSL version warning (bsc#992038).
• Make the resolver task change user and group IDs to the same values as the main task. (bsc#988028)
• Simplify ntpd's search for its own executable to prevent AppArmor warnings (bsc#956365).

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

• SUSE Linux Enterprise Desktop 12 SP1
  zypper in -t patch SUSE-SLE-DESKTOP-12-SP1-2016-1853=1
• SUSE Linux Enterprise Desktop 12 SP2
  zypper in -t patch SUSE-SLE-DESKTOP-12-SP2-2016-1853=1
• SUSE Linux Enterprise Server for the Raspberry Pi 12-SP2
  zypper in -t patch SUSE-SLE-RPI-12-SP2-2016-1853=1
• SUSE Linux Enterprise Server for SAP Applications 12 SP1
  zypper in -t patch SUSE-SLE-SERVER-12-SP1-2016-1853=1
• SUSE Linux Enterprise Server 12 SP1
  zypper in -t patch SUSE-SLE-SERVER-12-SP1-2016-1853=1
• SUSE Linux Enterprise High Performance Computing 12 SP2
  zypper in -t patch SUSE-SLE-SERVER-12-SP2-2016-1853=1
• SUSE Linux Enterprise Server 12 SP2
  zypper in -t patch SUSE-SLE-SERVER-12-SP2-2016-1853=1
• SUSE Linux Enterprise Server for SAP Applications 12 SP2
  zypper in -t patch SUSE-SLE-SERVER-12-SP2-2016-1853=1

Package List:

• SUSE Linux Enterprise Desktop 12 SP1 (x86_64)
  • ntp-4.2.8p9-55.1
  • ntp-debugsource-4.2.8p9-55.1
  • ntp-doc-4.2.8p9-55.1
  • ntp-debuginfo-4.2.8p9-55.1
• SUSE Linux Enterprise Desktop 12 SP2 (x86_64)
  • ntp-4.2.8p9-55.1
  • ntp-debugsource-4.2.8p9-55.1
  • ntp-doc-4.2.8p9-55.1
  • ntp-debuginfo-4.2.8p9-55.1
• SUSE Linux Enterprise Server for the Raspberry Pi 12-SP2 (aarch64)
  • ntp-4.2.8p9-55.1
  • ntp-debugsource-4.2.8p9-55.1
  • ntp-doc-4.2.8p9-55.1
  • ntp-debuginfo-4.2.8p9-55.1
• SUSE Linux Enterprise Server for SAP Applications 12 SP1 (ppc64le x86_64)
  • ntp-4.2.8p9-55.1
  • ntp-debugsource-4.2.8p9-55.1
  • ntp-doc-4.2.8p9-55.1
  • ntp-debuginfo-4.2.8p9-55.1
• SUSE Linux Enterprise Server 12 SP1 (ppc64le s390x x86_64)
  • ntp-4.2.8p9-55.1
  • ntp-debugsource-4.2.8p9-55.1
  • ntp-doc-4.2.8p9-55.1
  • ntp-debuginfo-4.2.8p9-55.1
• SUSE Linux Enterprise High Performance Computing 12 SP2 (aarch64 x86_64)
  • ntp-4.2.8p9-55.1
  • ntp-debugsource-4.2.8p9-55.1
  • ntp-doc-4.2.8p9-55.1
  • ntp-debuginfo-4.2.8p9-55.1
• SUSE Linux Enterprise Server 12 SP2 (aarch64 ppc64le s390x x86_64)
  • ntp-4.2.8p9-55.1
  • ntp-debugsource-4.2.8p9-55.1
  • ntp-doc-4.2.8p9-55.1
  • ntp-debuginfo-4.2.8p9-55.1
• SUSE Linux Enterprise Server for SAP Applications 12 SP2 (ppc64le x86_64)
  • ntp-4.2.8p9-55.1
  • ntp-debugsource-4.2.8p9-55.1
  • ntp-doc-4.2.8p9-55.1
  • ntp-debuginfo-4.2.8p9-55.1

References:

• https://www.suse.com/security/cve/CVE-2015-5219.html
• https://www.suse.com/security/cve/CVE-2016-7426.html
• https://www.suse.com/security/cve/CVE-2016-7427.html
• https://www.suse.com/security/cve/CVE-2016-7428.html
• https://www.suse.com/security/cve/CVE-2016-7429.html
• https://www.suse.com/security/cve/CVE-2016-7431.html
• https://www.suse.com/security/cve/CVE-2016-7433.html
• https://www.suse.com/security/cve/CVE-2016-7434.html
• https://www.suse.com/security/cve/CVE-2016-9310.html
• https://www.suse.com/security/cve/CVE-2016-9311.html
• https://bugzilla.suse.com/show_bug.cgi?id=1009434
• https://bugzilla.suse.com/show_bug.cgi?id=1011377
• https://bugzilla.suse.com/show_bug.cgi?id=1011390
• https://bugzilla.suse.com/show_bug.cgi?id=1011395
• https://bugzilla.suse.com/show_bug.cgi?id=1011398
• https://bugzilla.suse.com/show_bug.cgi?id=1011404
• https://bugzilla.suse.com/show_bug.cgi?id=1011406
• https://bugzilla.suse.com/show_bug.cgi?id=1011411
• https://bugzilla.suse.com/show_bug.cgi?id=1011417
• https://bugzilla.suse.com/show_bug.cgi?id=943216
• https://bugzilla.suse.com/show_bug.cgi?id=956365
• https://bugzilla.suse.com/show_bug.cgi?id=981252
• https://bugzilla.suse.com/show_bug.cgi?id=988028
• https://bugzilla.suse.com/show_bug.cgi?id=992038
• https://bugzilla.suse.com/show_bug.cgi?id=992606