Wind River Support Network

HomeDefectsLIN5-21659
Fixed

LIN5-21659 : Security Advisory - ntp - CVE-2016-4954

Created: Jun 13, 2016    Updated: May 29, 2018
Resolved Date: Jun 16, 2016
Found In Version: 5.0.1.35
Fix Version: 5.0.1.36
Severity: Standard
Applicable for: Wind River Linux 5
Component/s: Userspace

Description

An attacker who is able to spoof packets with correct origin timestamps from enough servers before the expected response packets arrive at the target machine can affect some peer variables and, for example, cause a false leap indication to be set. 

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-4954 

Other Downloads


Live chat
Online