A fix is available
APAR status
Closed as program error.
Error description
AIX's implementation of ntp is vulnerable to CVE-2015-1799 CVE-2015-1798 Various issues around the the symmetric-key feature in the receive function in ntp_proto.c in ntpd
Local fix
Problem summary
CVE-2015-1799 It is a denial-of-service attack.
Problem conclusion
Patches issues by NTP community incorporated where aplicable
Temporary fix
Comments
APAR Information
APAR number
IV74261
Reported component name
AIX V7.1
Reported component ID
5765H4000
Reported release
710
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Submitted date
2015-06-17
Closed date
2015-09-03
Last modified date
2016-02-24
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
AIX V7.1
Fixed component ID
5765H4000
Applicable component levels
R710 PSY U867672
UP16/02/22 I 1000
PTF to Fileset Mapping
U867672 bos.net.tcp.client 7.1.3.46
[{"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Product":{"code":"SSMV87","label":"AIX 6.1 Enterprise Edition"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"710","Edition":"","Line of Business":{"code":"LOB08","label":"Cognitive Systems"}},{"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"SSMVAX","label":"AIX Express Edition"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"710","Edition":"","Line of Business":{"code":"LOB08","label":"Cognitive Systems"}},{"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Product":{"code":"SG11R","label":"AIX 7.1 HIPERS, APARs and Fixes"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"710","Edition":"","Line of Business":{"code":"","label":""}}]
Document Information
Modified date:
24 February 2016