First published: Mon Jun 03 2019(Updated: )
NTP is vulnerable to a denial of service, caused by a flaw in ntpd. By sending a server mode packet with a spoofed source IP address, a remote attacker could exploit this vulnerability to block unauthenticated synchronization resulting in a denial of service condition.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/ntp | <4.2.8 | 4.2.8 |
redhat/ntp | <4.3.100 | 4.3.100 |
IBM Data Risk Manager | <=2.0.6 | |
NTP | <=4.2.7 | |
NTP | >=4.3.98<4.3.100 | |
NTP | =4.2.8 | |
NTP | =4.2.8-p1 | |
NTP | =4.2.8-p1-beta1 | |
NTP | =4.2.8-p1-beta2 | |
NTP | =4.2.8-p1-beta3 | |
NTP | =4.2.8-p1-beta4 | |
NTP | =4.2.8-p1-beta5 | |
NTP | =4.2.8-p1-rc1 | |
NTP | =4.2.8-p1-rc2 | |
NTP | =4.2.8-p10 | |
NTP | =4.2.8-p11 | |
NTP | =4.2.8-p12 | |
NTP | =4.2.8-p13 | |
NTP | =4.2.8-p2 | |
NTP | =4.2.8-p2-rc1 | |
NTP | =4.2.8-p2-rc2 | |
NTP | =4.2.8-p2-rc3 | |
NTP | =4.2.8-p3 | |
NTP | =4.2.8-p3-rc1 | |
NTP | =4.2.8-p3-rc2 | |
NTP | =4.2.8-p3-rc3 | |
NTP | =4.2.8-p4 | |
NTP | =4.2.8-p5 | |
NTP | =4.2.8-p6 | |
NTP | =4.2.8-p7 | |
NTP | =4.2.8-p8 | |
NTP | =4.2.8-p9 | |
Red Hat Enterprise Linux | =7.0 | |
IBM Data ONTAP | ||
NetApp SolidFire & HCI Management Node | ||
NetApp SolidFire & HCI Storage Node | ||
NetApp VASA Provider | >=7.2 | |
NetApp VASA Provider for Clustered Data ONTAP | >=7.2 | |
NetApp Virtual Storage Console for VMware vSphere | >=7.2 | |
IBM Data ONTAP | ||
NetApp HCI Storage Nodes | ||
NetApp HCI Storage Nodes | ||
NetApp Fabric-Attached Storage 8300 Firmware | ||
NetApp All Flash Fabric-Attached Storage 8300 | ||
NetApp All Flash Fabric-Attached Storage 8700 Firmware | ||
NetApp Fabric-Attached Storage 8700 | ||
NetApp Fabric-Attached Storage A400 Firmware | ||
NetApp Fabric-Attached Storage A400 Firmware | ||
NetApp Fabric-Attached Storage 8300 Firmware | ||
NetApp All Flash Fabric-Attached Storage 8300 Firmware | ||
NetApp All Flash Fabric-Attached Storage 8700 Firmware | ||
NetApp Fabric-Attached Storage 8700 | ||
NetApp Fabric-Attached Storage A400 Firmware | ||
NetApp Fabric-Attached Storage A400 | ||
Debian Linux | =8.0 | |
SUSE Linux | =15.1 | |
SUSE Linux | =15.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-11868 is a vulnerability in ntpd that allows an off-path attacker to block unauthenticated synchronization.
ntpd versions before 4.2.8p14 and 4.3.x before 4.3.100 are affected.
The attacker can use a server mode packet with a spoofed source IP address, which causes transmissions to be rescheduled even without a valid origin timestamp.
CVE-2020-11868 has a severity score of 7.5 (high).
More information about CVE-2020-11868 can be found in the references: [Bugzilla Red Hat](https://bugzilla.redhat.com/show_bug.cgi?id=1716661), [NTP Bug 3592](http://support.ntp.org/bin/view/Main/NtpBug3592), [Bugzilla Red Hat](https://bugzilla.redhat.com/show_bug.cgi?id=1824831).