USN-4229-2
- Source
- https://ubuntu.com/security/notices/USN-4229-2
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4229-2.json
- JSON Data
- https://api.osv.dev/v1/vulns/USN-4229-2
- Related
- Published
- 2021-03-15T22:24:29.685065Z
- Modified
- 2021-03-15T22:24:29.685065Z
- Summary
- ntp vulnerability
- Details
-
USN-4229-1 fixed a vulnerability in NTP. This update provides the corresponding update for Ubuntu 18.04 ESM.
Original advisory details:
It was discovered that ntpq and ntpdc incorrectly handled some arguments. An attacker could possibly use this issue to cause ntpq or ntpdc to crash, execute arbitrary code, or escalate to higher privileges.
- References
Affected packages
Ubuntu:Pro:18.04:LTS / ntp
Package
- Name
- ntp
- Purl
- pkg:deb/ubuntu/ntp?arch=src?distro=esm-apps/bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1:4.2.8p10+dfsg-5ubuntu7.3+esm1
Affected versions
1:4.*
1:4.2.8p10+dfsg-5ubuntu3
1:4.2.8p10+dfsg-5ubuntu4
1:4.2.8p10+dfsg-5ubuntu5
1:4.2.8p10+dfsg-5ubuntu6
1:4.2.8p10+dfsg-5ubuntu7
1:4.2.8p10+dfsg-5ubuntu7.1
1:4.2.8p10+dfsg-5ubuntu7.1+esm1
1:4.2.8p10+dfsg-5ubuntu7.1+esm2
1:4.2.8p10+dfsg-5ubuntu7.2
1:4.2.8p10+dfsg-5ubuntu7.2+esm1
1:4.2.8p10+dfsg-5ubuntu7.3
Ecosystem specific
{
"availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
"binaries": [
{
"binary_version": "1:4.2.8p10+dfsg-5ubuntu7.3+esm1",
"binary_name": "ntp"
},
{
"binary_version": "1:4.2.8p10+dfsg-5ubuntu7.3+esm1",
"binary_name": "ntp-dbgsym"
},
{
"binary_version": "1:4.2.8p10+dfsg-5ubuntu7.3+esm1",
"binary_name": "ntp-doc"
},
{
"binary_version": "1:4.2.8p10+dfsg-5ubuntu7.3+esm1",
"binary_name": "ntpdate"
},
{
"binary_version": "1:4.2.8p10+dfsg-5ubuntu7.3+esm1",
"binary_name": "ntpdate-dbgsym"
},
{
"binary_version": "1:4.2.8p10+dfsg-5ubuntu7.3+esm1",
"binary_name": "sntp"
},
{
"binary_version": "1:4.2.8p10+dfsg-5ubuntu7.3+esm1",
"binary_name": "sntp-dbgsym"
}
]
}