CVE-2015-3405
Summary
| CVE | CVE-2015-3405 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2017-08-09 16:29:00 UTC |
| Updated | 2023-02-13 00:49:00 UTC |
| Description | ntp-keygen in ntp 4.2.8px before 4.2.8p2-RC2 and 4.3.x before 4.3.12 does not generate MD5 keys with sufficient entropy on big endian machines when the lowest order byte of the temp variable is between 0x20 and 0x7f and not #, which might allow remote attackers to obtain the value of generated MD5 keys via a brute force attack with the 93 possible keys. |
Risk And Classification
Problem Types: CWE-331
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Operating System | Debian | Debian Linux | 7.0 | All | All | All |
| Operating System | Debian | Debian Linux | 8.0 | All | All | All |
| Operating System | Debian | Debian Linux | 7.0 | All | All | All |
| Operating System | Debian | Debian Linux | 8.0 | All | All | All |
| Operating System | Fedoraproject | Fedora | 21 | All | All | All |
| Operating System | Fedoraproject | Fedora | 21 | All | All | All |
| Application | Ntp | Ntp | 4.2.8 | p1 | All | All |
| Application | Ntp | Ntp | 4.2.8 | p2 | All | All |
| Application | Ntp | Ntp | 4.2.8 | p2-rc1 | All | All |
| Application | Ntp | Ntp | 4.3.0 | All | All | All |
| Application | Ntp | Ntp | 4.3.1 | All | All | All |
| Application | Ntp | Ntp | 4.3.10 | All | All | All |
| Application | Ntp | Ntp | 4.3.11 | All | All | All |
| Application | Ntp | Ntp | 4.3.2 | All | All | All |
| Application | Ntp | Ntp | 4.3.3 | All | All | All |
| Application | Ntp | Ntp | 4.3.4 | All | All | All |
| Application | Ntp | Ntp | 4.3.5 | All | All | All |
| Application | Ntp | Ntp | 4.3.6 | All | All | All |
| Application | Ntp | Ntp | 4.3.7 | All | All | All |
| Application | Ntp | Ntp | 4.3.8 | All | All | All |
| Application | Ntp | Ntp | 4.3.9 | All | All | All |
| Application | Ntp | Ntp | 4.2.8 | p1 | All | All |
| Application | Ntp | Ntp | 4.2.8 | p2 | All | All |
| Application | Ntp | Ntp | 4.2.8 | p2-rc1 | All | All |
| Application | Ntp | Ntp | 4.3.0 | All | All | All |
| Application | Ntp | Ntp | 4.3.1 | All | All | All |
| Application | Ntp | Ntp | 4.3.10 | All | All | All |
| Application | Ntp | Ntp | 4.3.11 | All | All | All |
| Application | Ntp | Ntp | 4.3.2 | All | All | All |
| Application | Ntp | Ntp | 4.3.3 | All | All | All |
| Application | Ntp | Ntp | 4.3.4 | All | All | All |
| Application | Ntp | Ntp | 4.3.5 | All | All | All |
| Application | Ntp | Ntp | 4.3.6 | All | All | All |
| Application | Ntp | Ntp | 4.3.7 | All | All | All |
| Application | Ntp | Ntp | 4.3.8 | All | All | All |
| Application | Ntp | Ntp | 4.3.9 | All | All | All |
| Operating System | Opensuse | Suse Linux Enterprise Server | 11.0 | sp3 | All | All |
| Operating System | Opensuse | Suse Linux Enterprise Server | 11.0 | sp3 | All | All |
| Operating System | Opensuse Project | Suse Linux Enterprise Desktop | 11.0 | sp3 | All | All |
| Operating System | Opensuse Project | Suse Linux Enterprise Desktop | 11.0 | sp3 | All | All |
| Operating System | Redhat | Enterprise Linux Desktop | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux Desktop | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux For Ibm Z Systems | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux For Ibm Z Systems | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux For Power Big Endian | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux For Power Big Endian | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux For Scientific Computing | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux For Scientific Computing | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server From Rhui 6 | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux Server From Rhui 6 | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux Workstation | 6.0 | All | All | All |
| Operating System | Redhat | Enterprise Linux Workstation | 6.0 | All | All | All |
| Operating System | Suse | Suse Linux Enterprise Server | 11.0 | sp3 | All | All |
| Operating System | Suse | Suse Linux Enterprise Server | 11.0 | sp3 | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Bug 2797 – ntp-keygen trapped in endless loop for MD5 keys on big-endian machines | CONFIRM | bugs.ntp.org | Issue Tracking, Third Party Advisory, Vendor Advisory |
| access.redhat.com | CVE-2015-3405 | MISC | access.redhat.com | |
| [SECURITY] Fedora 21 Update: ntp-4.2.6p5-30.fc21 | FEDORA | lists.fedoraproject.org | Third Party Advisory |
| Red Hat Customer Portal | REDHAT | rhn.redhat.com | Third Party Advisory, VDB Entry |
| Debian -- Security Information -- DSA-3388-1 ntp | DEBIAN | www.debian.org | Third Party Advisory |
| [security-announce] SUSE-SU-2015:1173-1: important: Security update for | SUSE | lists.opensuse.org | Third Party Advisory |
| Red Hat Customer Portal | REDHAT | rhn.redhat.com | Third Party Advisory, VDB Entry |
| Document Display | HPE Support Center | CONFIRM | support.hpe.com | |
| All diffs for ChangeSet 1.3308.4.1 | CONFIRM | bk1.ntp.org | Third Party Advisory, Vendor Advisory |
| Bug 1210324 – CVE-2015-3405 ntp: ntp-keygen may generate non-random symmetric keys on big-endian systems | CONFIRM | bugzilla.redhat.com | Issue Tracking, Patch, Third Party Advisory, VDB Entry |
| Red Hat Customer Portal | MISC | access.redhat.com | |
| oss-security - Re: CVE request: ntp-keygen may generate non-random symmetric keys on big-endian systems | MLIST | www.openwall.com | Mailing List, Third Party Advisory |
| Oracle Linux Bulletin - October 2015 | CONFIRM | www.oracle.com | |
| Red Hat Customer Portal | MISC | access.redhat.com | |
| NTP 'ntp-keygen.c' Predictable Random Number Generator Weakness | BID | www.securityfocus.com | Third Party Advisory, VDB Entry |
| Oracle Solaris Third Party Bulletin - April 2015 | CONFIRM | www.oracle.com | |
| Debian -- Security Information -- DSA-3223-1 ntp | DEBIAN | www.debian.org | Third Party Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 43837 HPE Comware 5 And Comware 7 Switches And Routers using NTP, Remote Denial Of Service (HPESBHF03886)