PT-2015-4179 · Ntp+5 · Ntp Daemon+5

Published

2015-02-05

Updated

2024-06-15

CVE-2014-9297

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions NTP daemon (ntpd) (affected versions not specified)

Description The issue is related to a denial of service in the Network Time Protocol (NTP) Project NTP daemon. It is caused by an error when using symmetric key authentication. An attacker could exploit this by sending specially-crafted packets to both peering hosts, preventing synchronization.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CESA-2015_1459

CESA-2015_2231

CVE-2014-9297

DSA-3154-1

DSA-3154-2

MGASA-2015-0063

OPENSUSE-SU-2024:10181-1

RHSA-2015:1459

RHSA-2015:2231

RHSA-2015_1459

RHSA-2015_2231

SUSE-SU-2015:0274-1

USN-2497-1

Affected Products

Centos

Ibm Aix

Ntp Daemon

Red Hat

Suse

Ubuntu

PT-2015-4179 · Ntp+5 · Ntp Daemon+5

CVE-2014-9297

Related Identifiers

Affected Products

References · 113