CVE-2015-3405

NameCVE-2015-3405
Descriptionntp-keygen in ntp 4.2.8px before 4.2.8p2-RC2 and 4.3.x before 4.3.12 does not generate MD5 keys with sufficient entropy on big endian machines when the lowest order byte of the temp variable is between 0x20 and 0x7f and not #, which might allow remote attackers to obtain the value of generated MD5 keys via a brute force attack with the 93 possible keys.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDLA-192-1, DSA-3223-1

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
ntp (PTS)jessie, jessie (lts)1:4.2.6.p5+dfsg-7+deb8u3fixed
stretch1:4.2.8p10+dfsg-3+deb9u2fixed
buster1:4.2.8p12+dfsg-4fixed
bullseye1:4.2.8p15+dfsg-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
ntpsourcesqueeze1:4.2.6.p2+dfsg-1+deb6u3DLA-192-1
ntpsourcewheezy1:4.2.6.p5+dfsg-2+deb7u4DSA-3223-1
ntpsource(unstable)1:4.2.6.p5+dfsg-7

Notes

https://bugs.ntp.org/show_bug.cgi?id=2797
Patch: http://bk1.ntp.org/ntp-stable/?PAGE=patch&REV=55199296N2gFqH1Hm5GOnhrk9Ypygg
https://www.openwall.com/lists/oss-security/2015/04/09/5
Search for package or bug name: Reporting problems