製品・ソフトウェアに関する情報

JVN脆弱性詳細

NTP の ntpd の ntp_parser.y の log_config_command 関数におけるサービス運用妨害 (DoS) の脆弱性

Title	NTP の ntpd の ntp_parser.y の log_config_command 関数におけるサービス運用妨害 (DoS) の脆弱性
Summary	NTP の ntpd の ntp_parser.y の log_config_command 関数には、サービス運用妨害 (ntpd のクラッシュ) 状態にされる脆弱性が存在します。
Possible impacts	リモートの攻撃者により、巧妙に細工された logconfig コマンドを介して、サービス運用妨害 (ntpd のクラッシュ) 状態にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	Aug. 18, 2015, midnight
Registration Date	Aug. 15, 2017, 4:56 p.m.
Last Update	Aug. 15, 2017, 4:56 p.m.

CVSS3.0 : 重要
Score	7.5
Vector	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS2.0 : 警告
Score	5
Vector	AV:N/AC:L/Au:N/C:N/I:N/A:P

Affected System

レッドハット

Red Hat Enterprise Linux Desktop

Red Hat Enterprise Linux HPC Node

Red Hat Enterprise Linux Server

Red Hat Enterprise Linux Workstation

NTP Project

NTP 4.2.7p42 未満

Debian

Debian GNU/Linux

Fedora Project

Fedora

Canonical

Ubuntu

SUSE

SUSE Linux Enterprise Debuginfo

SUSE Linux Enterprise Server

SUSE Manager

SUSE Manager Proxy

SUSE OpenStack Cloud

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2015-5194	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5194
National Vulnerability Database (NVD)
2	CVE-2015-5194	https://nvd.nist.gov/vuln/detail/CVE-2015-5194

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-20	https://jvndb.jvn.jp/ja/cwe/CWE-20.html

ベンダー情報

No	Name	URL
Debian Security Advisory
1	DSA-3388	https://www.debian.org/security/2015/dsa-3388
Fedora Update Notification
2	FEDORA-2015-14212	https://lists.fedoraproject.org/pipermail/package-announce/2015-October/169167.html
3	FEDORA-2015-77bfbc1bcd	https://lists.fedoraproject.org/pipermail/package-announce/2015-November/170926.html
GitHub
4	[Bug 1593] ntpd abort in free() with logconfig syntax error.	https://github.com/ntp-project/ntp/commit/553f2fa65865c31c5e3c48812cfd46176cffdd27
IBM Support Document
5	1985122	https://www-01.ibm.com/support/docview.wss?uid=swg21985122
6	1986956	https://www-01.ibm.com/support/docview.wss?uid=swg21986956
7	1988706	https://www-01.ibm.com/support/docview.wss?uid=swg21988706
8	1989542	https://www-01.ibm.com/support/docview.wss?uid=swg21989542
9	T1024157	https://www-01.ibm.com/support/docview.wss?uid=isg3T1024157
NTP Project
10	ntp-dev/1.2156.3.5 changes	http://bk1.ntp.org/ntp-dev/?PAGE=patch&REV=4c4fc141LwvcoGp-lLGhkAFp3ZvtrA
opensuse-security-announce
11	SUSE-SU-2016:1311	https://lists.opensuse.org/opensuse-security-announce/2016-05/msg00048.html
12	SUSE-SU-2016:1912	https://lists.opensuse.org/opensuse-security-announce/2016-07/msg00026.html
13	SUSE-SU-2016:2094	https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00042.html
Red Hat Bugzilla
14	Bug 1254542	https://bugzilla.redhat.com/show_bug.cgi?id=1254542
Red Hat Security Advisory
15	RHSA-2016:0780	https://access.redhat.com/errata/RHSA-2016:0780
16	RHSA-2016:2583	https://access.redhat.com/errata/RHSA-2016:2583
Ubuntu Security Notice
17	USN-2783-1	https://usn.ubuntu.com/usn/USN-2783-1/

Change Log

No	Changed Details	Date of change
0	[2017年08月15日] 掲載	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2015-5194

Summary	The log_config_command function in ntp_parser.y in ntpd in NTP before 4.2.7p42 allows remote attackers to cause a denial of service (ntpd crash) via crafted logconfig commands.
Publication Date	July 21, 2017, 11:29 p.m.
Registration Date	Jan. 26, 2021, 2:52 p.m.
Last Update	Nov. 21, 2024, 11:32 a.m.

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:fedoraproject:fedora:22:::::::*
cpe:2.3:o:fedoraproject:fedora:21:::::::*

Configuration2	or higher	or less	more than	less than
cpe:2.3:o:suse:manager_proxy:2.1:::::::*
cpe:2.3:a:suse:linux_enterprise_debuginfo:11:sp3::::::
cpe:2.3:o:suse:manager:2.1:::::::*
cpe:2.3:a:suse:linux_enterprise_debuginfo:11:sp2::::::
cpe:2.3:o:suse:linux_enterprise_server:11:sp3:::ltss:::*
cpe:2.3:o:suse:openstack_cloud:5:::::::*
cpe:2.3:o:suse:linux_enterprise_server:10:sp4:::ltss:::*
cpe:2.3:o:suse:linux_enterprise_server:11:sp2:::ltss:::*

Configuration3	or higher	or less	more than	less than
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_hpc_node:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server:6.0:::::::*

Configuration4	or higher	or less	more than	less than
cpe:2.3:o:debian:debian_linux:8.0:::::::*
cpe:2.3:o:debian:debian_linux:7.0:::::::*

Configuration5	or higher	or less	more than	less than
cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::
cpe:2.3:o:canonical:ubuntu_linux:15.10:::::::*
cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
cpe:2.3:o:canonical:ubuntu_linux:15.04:::::::*

Configuration6		or higher	or less	more than	less than
cpe:2.3:a:ntp:ntp::p40::::::*			4.2.7

Related information, measures and tools

No	URL	タグ
1	http://bk1.ntp.org/ntp-dev/?PAGE=patch&REV=4c4fc141LwvcoGp-lLGhkAFp3ZvtrA	Issue Tracking Patch Vendor Advisory
2	http://bk1.ntp.org/ntp-dev/?PAGE=patch&REV=4c4fc141LwvcoGp-lLGhkAFp3ZvtrA	Issue Tracking Patch Vendor Advisory
3	http://lists.fedoraproject.org/pipermail/package-announce/2015-November/170926.html	Third Party Advisory
4	http://lists.fedoraproject.org/pipermail/package-announce/2015-November/170926.html	Third Party Advisory
5	http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169167.html	Third Party Advisory
6	http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169167.html	Third Party Advisory
7	http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00048.html	Third Party Advisory
8	http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00048.html	Third Party Advisory
9	http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00026.html	Third Party Advisory
10	http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00026.html	Third Party Advisory
11	http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00042.html	Third Party Advisory
12	http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00042.html	Third Party Advisory
13	http://rhn.redhat.com/errata/RHSA-2016-0780.html	Third Party Advisory
14	http://rhn.redhat.com/errata/RHSA-2016-0780.html	Third Party Advisory
15	http://rhn.redhat.com/errata/RHSA-2016-2583.html	Third Party Advisory
16	http://rhn.redhat.com/errata/RHSA-2016-2583.html	Third Party Advisory
17	http://www.debian.org/security/2015/dsa-3388	Third Party Advisory
18	http://www.debian.org/security/2015/dsa-3388	Third Party Advisory
19	http://www.openwall.com/lists/oss-security/2015/08/25/3	Mailing List Patch Third Party Advisory
20	http://www.openwall.com/lists/oss-security/2015/08/25/3	Mailing List Patch Third Party Advisory
21	http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
22	http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
23	http://www.securityfocus.com/bid/76475	Third Party Advisory VDB Entry
24	http://www.securityfocus.com/bid/76475	Third Party Advisory VDB Entry
25	http://www.ubuntu.com/usn/USN-2783-1	Third Party Advisory
26	http://www.ubuntu.com/usn/USN-2783-1	Third Party Advisory
27	https://bugzilla.redhat.com/show_bug.cgi?id=1254542	Issue Tracking Patch
28	https://bugzilla.redhat.com/show_bug.cgi?id=1254542	Issue Tracking Patch
29	https://github.com/ntp-project/ntp/commit/553f2fa65865c31c5e3c48812cfd46176cffdd27	Issue Tracking Patch Third Party Advisory
30	https://github.com/ntp-project/ntp/commit/553f2fa65865c31c5e3c48812cfd46176cffdd27	Issue Tracking Patch Third Party Advisory
31	https://www-01.ibm.com/support/docview.wss?uid=isg3T1024157	Third Party Advisory
32	https://www-01.ibm.com/support/docview.wss?uid=isg3T1024157	Third Party Advisory
33	https://www-01.ibm.com/support/docview.wss?uid=swg21985122	Third Party Advisory
34	https://www-01.ibm.com/support/docview.wss?uid=swg21985122	Third Party Advisory
35	https://www-01.ibm.com/support/docview.wss?uid=swg21986956	Third Party Advisory
36	https://www-01.ibm.com/support/docview.wss?uid=swg21986956	Third Party Advisory
37	https://www-01.ibm.com/support/docview.wss?uid=swg21988706	Third Party Advisory
38	https://www-01.ibm.com/support/docview.wss?uid=swg21988706	Third Party Advisory
39	https://www-01.ibm.com/support/docview.wss?uid=swg21989542	Third Party Advisory
40	https://www-01.ibm.com/support/docview.wss?uid=swg21989542	Third Party Advisory

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-20	不適切な入力確認	https://cwe.mitre.org/data/definitions/20.html

Configuration2	or higher	or less	more than	less than
cpe:2.3:o:suse:manager_proxy:2.1:::::::*
cpe:2.3:a:suse:linux_enterprise_debuginfo:11:sp3::::::
cpe:2.3:o:suse:manager:2.1:::::::*
cpe:2.3:a:suse:linux_enterprise_debuginfo:11:sp2::::::
cpe:2.3:o:suse:linux_enterprise_server:11:sp3:::ltss:::*
cpe:2.3:o:suse:openstack_cloud:5:::::::*
cpe:2.3:o:suse:linux_enterprise_server:10:sp4:::ltss:::*
cpe:2.3:o:suse:linux_enterprise_server:11:sp2:::ltss:::*

Configuration3	or higher	or less	more than	less than
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_hpc_node:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server:6.0:::::::*