HIGH✓ PATCH🇬🇧 English

CVE-2015-5300

CVSS 7.5v3.0pub. 2017-07-21upd. 2026-05-13

The panic_gate check in NTP before 4.2.8p5 is only re-enabled after the first change to the system clock that was greater than 128 milliseconds by default, which allows remote attackers to set NTP to an arbitrary time when started with the -g option, or to alter the time by up to 900 seconds otherwise by responding to an unspecified number of requests from trusted sources, and leveraging a resulting denial of service (abort and restart).

oryginał EN
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Canonical Ubuntu

    OS
    Canonical
    12.0414.0415.0415.10
  • Debian

    OS
    Debian
    7.08.0
  • Fedora Project Fedora

    OS
    Fedoraproject
    2122
  • Ntp

    APP
    Ntp
    ≤ 4.2.8
  • Opensuse Leap

    OS
    Opensuse
    42.1
  • Opensuse

    OS
    Opensuse
    13.2
  • Red Hat Enterprise Linux Desktop

    OS
    Redhat
    6.07.0
  • Red Hat Enterprise Linux Hpc Node

    OS
    Redhat
    6.07.0
  • Red Hat Enterprise Linux Hpc Node Eus

    OS
    Redhat
    7.1
  • Red Hat Enterprise Linux Server

    OS
    Redhat
    6.07.0
  • Red Hat Enterprise Linux Server Eus

    OS
    Redhat
    6.7.z7.1
  • Red Hat Enterprise Linux Workstation

    OS
    Redhat
    6.07.0
  • SUSE Linux Enterprise Debuginfo

    APP
    Suse
    11
  • SUSE Linux Enterprise Desktop

    OS
    Suse
    12
  • SUSE Linux Enterprise Server

    OS
    Suse
    101112
  • SUSE Linux Enterprise Software Development Kit

    OS
    Suse
    12
  • SUSE Manager

    OS
    Suse
    2.1
  • SUSE Manager Proxy

    OS
    Suse
    2.1
  • SUSE Openstack Cloud

    OS
    Suse
    5
  • SUSE Linux Enterprise Server

    OS
    Suse
    12
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Tagi
DoS
CWE
Referencje

Powiązane podatności

CVE-2026-24061CRITICAL9.8⚠ KEVPL ✓ten sam produkt

GNU Inetutils telnetd: ominięcie uwierzytelnienia przez zmienną USER

CVE-2025-32463CRITICAL9.3⚠ KEVPL ✓ten sam produkt

Sudo: eskalacja uprawnień do root poprzez opcję --chroot (CVE-2025-32463)

CVE-2025-49113CRITICAL9.9⚠ KEVPL ✓ten sam produkt

RCE przez deserializację PHP w Roundcube Webmail (parametr _from)

CVE-2025-32433CRITICAL10.0⚠ KEVPL ✓ten sam produkt

Erlang/OTP SSH — nieuwierzytelniony RCE (CVSS 10.0)

CVE-2025-24201CRITICAL10.0⚠ KEVPL ✓ten sam produkt

Apple WebKit: out-of-bounds write umożliwiający ucieczkę z sandbox przeglądarki