Wind River Support Network

HomeDefectsLIN6-9088

Fixed

LIN6-9088 : Security Advisory - ntp - CVE-2014-9293

Created: Dec 21, 2014 Updated: Dec 3, 2018

Resolved Date: Dec 22, 2014

Previous ID: LIN4-32107

Found In Version: 6.0.0.15

Fix Version: 6.0.0.16

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Userspace

Description

The config_auth function in ntpd in NTP before 4.2.7p11, when an auth key is not configured, improperly generates a key, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9293

Other Downloads

Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38