Home Unlabelled IBM Security Bulletin: Vulnerabilities in NTPv4 affect AIX (CVE-2018-12327, CVE-2018-7170) Security Bulletin

IBM Security Bulletin: Vulnerabilities in NTPv4 affect AIX (CVE-2018-12327, CVE-2018-7170) Security Bulletin

By
Saturday, December 15, 2018
Read
Add Comment

Dec 15, 2018 9:00 am EST

Categorized: Medium Severity

Share this post:

There is a vulnerability in NTPv4 that affects AIX.

CVE(s): CVE-2018-12327, CVE-2018-7170

Affected product(s) and affected version(s):

AIX 6.1, 7.1, 7.2
VIOS 2.2.x

The vulnerabilities in the following filesets are being addressed:

key_fileset = aix

For NTPv4:

Fileset Lower Level Upper Level KEY
———————————————————
ntp.rte 7.4.2.8100 7.4.2.8110 key_w_fs

To find out whether the affected filesets are installed on your systems, refer to the lslpp command found in AIX user’s guide.

Example: lslpp -L | grep -i ntp.rte

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10744497
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/145120
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/139786



from IBM Product Security Incident Response Team https://ift.tt/2LiYyGl
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us