[ntp:security] CVE Question

Sue Graves sgraves at nwtime.org
Thu Oct 29 23:38:59 UTC 2015


Hi Mark and Joel,

It isn't clear what part of the BU paper CVE-2015-5300 is pointing to.
I assume you've asked Debian this question? Is NGC running Debian?

Please let us know what version of Debian OS or NTP you are running. Our
ntp4.2.8-4 did address the KoD issue and there will be further info
coming out on this.

Thanks
Sue

On 10/29/2015 12:47 PM, Kloepping, Mark E (IS) wrote:
> NTP Support Team
> 
>  
> 
> Is NTP effected by CVE-2015-5300.  If so, does NTP 4.2.8p4 resolve
> CVE-2015-5300? 
> 
>  
> 
> Thanks,
> Mark
> 
>  
> 
>  
> 
> *Mark Kloepping*
> Software Engineer
> ______________________________
> *Northrop Grumman - IS*
> *Work:**703.561.3679
> Cell: 412.716.7240*
> *Email:* mark.kloepping at ngc.com <mailto:Mark.kloepping at ngc.com>
> *Address: 2340 Dulles Corner Blvd,
>                   Herndon, VA 20171*
> 
>  
> 
> 
> 
> _______________________________________________
> security mailing list
> security at lists.ntp.org
> http://lists.ntp.org/listinfo/security
> 

-- 
Knowing the correct time isn't always important - until it is.
Join Network Time Consortium http://nwtime.org/join



More information about the security mailing list