High severity7.5NVD Advisory· Published Jul 5, 2016· Updated May 6, 2026

CVE-2016-4954

Description

The process_packet function in ntp_proto.c in ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (peer-variable modification) by sending spoofed packets from many source IP addresses in a certain scenario, as demonstrated by triggering an incorrect leap indication.

Affected products

Ntp/Ntp22 versions
cpe:2.3:a:ntp:ntp:*:*:*:*:*:*:*:*+ 21 more
- cpe:2.3:a:ntp:ntp:*:*:*:*:*:*:*:*range: >=4.2.0,<4.2.8
- cpe:2.3:a:ntp:ntp:4.2.8:-:*:*:*:*:*:*
- cpe:2.3:a:ntp:ntp:4.2.8:p1:*:*:*:*:*:*
- cpe:2.3:a:ntp:ntp:4.2.8:p1-beta1:*:*:*:*:*:*
- cpe:2.3:a:ntp:ntp:4.2.8:p1-beta2:*:*:*:*:*:*
- cpe:2.3:a:ntp:ntp:4.2.8:p1-beta3:*:*:*:*:*:*
- cpe:2.3:a:ntp:ntp:4.2.8:p1-beta4:*:*:*:*:*:*
- cpe:2.3:a:ntp:ntp:4.2.8:p1-beta5:*:*:*:*:*:*
- cpe:2.3:a:ntp:ntp:4.2.8:p1-rc1:*:*:*:*:*:*
- cpe:2.3:a:ntp:ntp:4.2.8:p1-rc2:*:*:*:*:*:*
- cpe:2.3:a:ntp:ntp:4.2.8:p2:*:*:*:*:*:*
- cpe:2.3:a:ntp:ntp:4.2.8:p2-rc1:*:*:*:*:*:*
- cpe:2.3:a:ntp:ntp:4.2.8:p2-rc2:*:*:*:*:*:*
- cpe:2.3:a:ntp:ntp:4.2.8:p2-rc3:*:*:*:*:*:*
- cpe:2.3:a:ntp:ntp:4.2.8:p3:*:*:*:*:*:*
- cpe:2.3:a:ntp:ntp:4.2.8:p3-rc1:*:*:*:*:*:*
- cpe:2.3:a:ntp:ntp:4.2.8:p3-rc2:*:*:*:*:*:*
- cpe:2.3:a:ntp:ntp:4.2.8:p3-rc3:*:*:*:*:*:*
- cpe:2.3:a:ntp:ntp:4.2.8:p4:*:*:*:*:*:*
- cpe:2.3:a:ntp:ntp:4.2.8:p5:*:*:*:*:*:*
- cpe:2.3:a:ntp:ntp:4.2.8:p6:*:*:*:*:*:*
- cpe:2.3:a:ntp:ntp:4.2.8:p7:*:*:*:*:*:*
SUSE S.A./Manager
cpe:2.3:a:suse:manager:2.1:*:*:*:*:*:*:*
SUSE S.A./Manager Proxy
cpe:2.3:a:suse:manager_proxy:2.1:*:*:*:*:*:*:*
SUSE S.A./Openstack Cloud
cpe:2.3:a:suse:openstack_cloud:5:*:*:*:*:*:*:*
OpenSUSE/Leap
cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*
OpenSUSE/openSUSE
cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*
Oracle Corporation/Solaris2 versions
cpe:2.3:o:oracle:solaris:10:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:oracle:solaris:10:*:*:*:*:*:*:*
- cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*
Siemens Foundation/Simatic Net Cp 443 1 Opc Ua Firmware
cpe:2.3:o:siemens:simatic_net_cp_443-1_opc_ua_firmware:*:*:*:*:*:*:*:*
Siemens Foundation/Tim 4r Ie Dnp3 Firmware
cpe:2.3:o:siemens:tim_4r-ie_dnp3_firmware:*:*:*:*:*:*:*:*
Siemens Foundation/Tim 4r Ie Firmware
cpe:2.3:o:siemens:tim_4r-ie_firmware:*:*:*:*:*:*:*:*
SUSE S.A./Linux Enterprise Desktop
cpe:2.3:o:suse:linux_enterprise_desktop:12:sp1:*:*:*:*:*:*
SUSE S.A./Linux Enterprise Server4 versions
cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:ltss:*:*:*+ 3 more
- cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:ltss:*:*:*
- cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:ltss:*:*:*
- cpe:2.3:o:suse:linux_enterprise_server:11:sp4:*:*:*:*:*:*
- cpe:2.3:o:suse:linux_enterprise_server:12:sp1:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.ntp.org/bin/view/Main/NtpBug3044nvdPatchVendor Advisory
bugs.ntp.org/3044nvdIssue TrackingVendor Advisory
lists.opensuse.org/opensuse-security-announce/2016-06/msg00018.htmlnvdMailing ListThird Party Advisory
lists.opensuse.org/opensuse-security-announce/2016-06/msg00023.htmlnvdMailing ListThird Party Advisory
lists.opensuse.org/opensuse-security-announce/2016-06/msg00024.htmlnvdMailing ListThird Party Advisory
lists.opensuse.org/opensuse-security-announce/2016-06/msg00028.htmlnvdMailing ListThird Party Advisory
lists.opensuse.org/opensuse-security-announce/2016-06/msg00040.htmlnvdMailing ListThird Party Advisory
support.ntp.org/bin/view/Main/SecurityNoticenvdVendor Advisory
www.kb.cert.org/vuls/id/321640nvdThird Party AdvisoryUS Government Resource
www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.htmlnvdThird Party Advisory
www.securitytracker.com/id/1036037nvdThird Party AdvisoryVDB Entry
cert-portal.siemens.com/productcert/pdf/ssa-211752.pdfnvdThird Party Advisory
cert-portal.siemens.com/productcert/pdf/ssa-497656.pdfnvdThird Party Advisory
h20566.www2.hpe.com/hpsc/doc/public/displaynvdThird Party Advisory
security.freebsd.org/advisories/FreeBSD-SA-16:24.ntp.ascnvdThird Party Advisory
security.gentoo.org/glsa/201607-15nvdThird Party Advisory
us-cert.cisa.gov/ics/advisories/icsa-21-103-11nvdThird Party AdvisoryUS Government Resource
lists.opensuse.org/opensuse-security-announce/2016-06/msg00020.htmlnvd
lists.opensuse.org/opensuse-security-announce/2016-07/msg00026.htmlnvd
lists.opensuse.org/opensuse-security-announce/2016-08/msg00042.htmlnvd
packetstormsecurity.com/files/137321/Slackware-Security-Advisory-ntp-Updates.htmlnvd
packetstormsecurity.com/files/137322/FreeBSD-Security-Advisory-FreeBSD-SA-16-24.ntp.htmlnvd
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160603-ntpdnvd
www.securityfocus.com/archive/1/538599/100/0/threadednvd
www.securityfocus.com/archive/1/538600/100/0/threadednvd
www.securityfocus.com/archive/1/540683/100/0/threadednvd
www.securityfocus.com/archive/1/archive/1/538599/100/0/threadednvd
www.securityfocus.com/archive/1/archive/1/538600/100/0/threadednvd
www.securityfocus.com/archive/1/archive/1/540683/100/0/threadednvd
www.ubuntu.com/usn/USN-3096-1nvd
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K3EYJQHJZ2KTVQ7ICEFHXTLZ36MRASWX/nvd
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ORAMN3Q7TVJ54MBYF75XCJOE3DP7LYHT/nvd
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WNWGCQLW2VY72NIUYMJOCAKJKTXHDUK2/nvd
us-cert.cisa.gov/ics/advisories/icsa-21-159-11nvd
www.kb.cert.org/vuls/id/321640nvd

News mentions

No linked articles in our index yet.

cvss	0.488
epss	0.004
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000