CVE-2015-5219 — HIGH (7.5) — White Hats Nepal

Q: How severe is CVE-2015-5219?

CVE-2015-5219 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2015-5219?

Check the references section above for vendor advisories and patch information. Affected products include: Fedoraproject Fedora, Suse Linux Enterprise Debuginfo, Suse Linux Enterprise Server, Suse Manager, Suse Manager Proxy.

Vulnerability Description

The ULOGTOD function in ntp.d in SNTP before 4.2.7p366 does not properly perform type conversions from a precision value to a double, which allows remote attackers to cause a denial of service (infinite loop) via a crafted NTP packet.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Fedoraproject	Fedora	21
Suse	Linux Enterprise Debuginfo	11
Suse	Linux Enterprise Server	10
Suse	Manager	2.1
Suse	Manager Proxy	2.1
Suse	Openstack Cloud	5
Redhat	Enterprise Linux Desktop	6.0
Redhat	Enterprise Linux Hpc Node	6.0
Redhat	Enterprise Linux Server	6.0
Redhat	Enterprise Linux Workstation	6.0
Debian	Debian Linux	7.0
Canonical	Ubuntu Linux	12.04
Ntp	Ntp	<= 4.2.7
Novell	Leap	42.2
Opensuse	Leap	42.1
Siemens	Tim 4R-Ie Firmware	All versions
Siemens	Tim 4R-Ie	-
Siemens	Tim 4R-Id Dnp3 Firmware	All versions
Siemens	Tim 4R-Id Dnp3	-
Oracle	Linux	6

Related Weaknesses (CWE)

CWE-704

References

http://aix.software.ibm.com/aix/efixes/security/ntp_advisory4.ascThird Party Advisory
http://bk1.ntp.org/ntp-dev/?PAGE=patch&REV=51786731Gr4-NOrTBC_a_uXO4wuGhgIssue TrackingPatchThird Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2015-November/170926.hMailing ListThird Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169167.htMailing ListThird Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2015-September/166992.Mailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00048.htmlBroken Link
http://lists.opensuse.org/opensuse-updates/2016-12/msg00153.htmlBroken Link
http://rhn.redhat.com/errata/RHSA-2016-0780.htmlThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-2583.htmlThird Party Advisory
http://www.debian.org/security/2015/dsa-3388Third Party Advisory
http://www.openwall.com/lists/oss-security/2015/08/25/3Mailing ListPatchThird Party Advisory
http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.hThird Party Advisory
http://www.securityfocus.com/bid/76473Third Party AdvisoryVDB Entry
http://www.ubuntu.com/usn/USN-2783-1Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1255118Issue Tracking

FAQ

What is CVE-2015-5219?

CVE-2015-5219 is a vulnerability with a CVSS score of 7.5 (HIGH). The ULOGTOD function in ntp.d in SNTP before 4.2.7p366 does not properly perform type conversions from a precision value to a double, which allows remote attackers to cause a denial of service (infini...

How severe is CVE-2015-5219?

CVE-2015-5219 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2015-5219?

Check the references section above for vendor advisories and patch information. Affected products include: Fedoraproject Fedora, Suse Linux Enterprise Debuginfo, Suse Linux Enterprise Server, Suse Manager, Suse Manager Proxy.