Detections
Analytics

SuSE 10 Security Update : xntp (ZYPP Patch Number 5489)

high Nessus Plugin ID 34234

Synopsis

The remote SuSE 10 host is missing a security-related patch.

Description

The ntp daemon did not use supplied keys.

The cause of the problem is that the authentication system is initialized after the config is parsed and that the keyfile option is parsed only by storing the keyfile name for later use when the authentication system is initialized. The trustedkey option is handled by attempting to complete the trusting of the specified keys (which are not yet loaded). So, all the trusting fails because it has nothing to act on.

This problem is fixed with this patch.

Solution

Apply ZYPP patch number 5489.

Plugin Details

Severity: High

ID: 34234

File Name: suse_xntp-5489.nasl

Version: 1.16

Type: local

Agent: unix

Published: 9/17/2008

Updated: 1/14/2021

Supported Sensors: Nessus Agent, Nessus

Vulnerability Information

CPE: cpe:/o:suse:suse_linux

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 7/31/2008