NTP 'ntpq' Stack Buffer Overflow Vulnerability

NTP 'ntpq' Stack Buffer Overflow Vulnerability

Solution:
Updates are available. Please see the references for more information.

Mandriva Linux Mandrake 2008.0

Mandriva ntp-4.2.4-10.2mdv2008.0.i586.rpm
http://www.mandriva.com/en/download/

Mandriva ntp-client-4.2.4-10.2mdv2008.0.i586.rpm
http://www.mandriva.com/en/download/

Mandriva ntp-doc-4.2.4-10.2mdv2008.0.i586.rpm
http://www.mandriva.com/en/download/

Mandriva Linux Mandrake 2009.0 x86_64

Mandriva ntp-4.2.4-18.2mdv2009.0.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva ntp-client-4.2.4-18.2mdv2009.0.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva ntp-doc-4.2.4-18.2mdv2009.0.x86_64.rpm
http://www.mandriva.com/en/download/

VMWare ESX Server 4.0

VMWare ESX-4.0.0-update01.zip
https://hostupdate.vmware.com/software/VUM/OFFLINE/release-158-2009111 8-187517/ESX-4.0.0-update01.zip

Mandriva Linux Mandrake 2008.1 x86_64

Mandriva ntp-4.2.4-15.2mdv2008.1.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva ntp-client-4.2.4-15.2mdv2008.1.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva ntp-doc-4.2.4-15.2mdv2008.1.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva Linux Mandrake 2008.1

Mandriva ntp-4.2.4-15.2mdv2008.1.i586.rpm
http://www.mandriva.com/en/download/

Mandriva ntp-client-4.2.4-15.2mdv2008.1.i586.rpm
http://www.mandriva.com/en/download/

Mandriva ntp-doc-4.2.4-15.2mdv2008.1.i586.rpm
http://www.mandriva.com/en/download/

Turbolinux Client 2008

Turbolinux ntp-4.2.4p3-6.i586.rpm
http://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Client/12/t urbolinux-updates/ntp-4.2.4p3-6.i586.rpm

HP HP-UX B.11.23

HP PHNE_39872
http://itrc.hp.com

HP HP-UX B.11.11

HP PHNE_39871
http://itrc.hp.com

Apple Mac OS X 10.4.11

Apple SecUpd2009-002PPC.dmg
(PowerPC)
http://support.apple.com/downloads/DL818/SecUpd2009-002PPC.dmg

Apple Mac OS X Server 10.4.11

Apple SecUpd2009-002Intel.dmg
(Intel)
http://support.apple.com/downloads/DL817/SecUpd2009-002Intel.dmg

Apple SecUpdSrvr2009-002PPC.dmg
(PowerPC)
http://support.apple.com/downloads/DL819/SecUpdSrvr2009-002PPC.dmg

Apple SecUpdSrvr2009-002Univ.dmg
(Universal)
http://support.apple.com/downloads/DL816/SecUpdSrvr2009-002Univ.dmg

Apple Mac OS X 10.5.2

Apple MacOSXUpdCombo10.5.7.dmg
http://support.apple.com/downloads/DL827/MacOSXUpdCombo10.5.7.dmg

Apple Mac OS X 10.5.3

Apple MacOSXUpdCombo10.5.7.dmg
http://support.apple.com/downloads/DL827/MacOSXUpdCombo10.5.7.dmg

Apple Mac OS X Server 10.5.3

Apple MacOSXServerUpdCombo10.5.7.dmg
http://support.apple.com/downloads/DL829/MacOSXServerUpdCombo10.5.7.dm g

Apple Mac OS X 10.5.4

Apple MacOSXUpdCombo10.5.7.dmg
http://support.apple.com/downloads/DL827/MacOSXUpdCombo10.5.7.dmg

Apple Mac OS X Server 10.5.5

Apple MacOSXServerUpdCombo10.5.7.dmg
http://support.apple.com/downloads/DL829/MacOSXServerUpdCombo10.5.7.dm g

Apple Mac OS X 10.5.6

Apple MacOSXUpd10.5.7.dmg
http://support.apple.com/downloads/DL826/MacOSXUpd10.5.7.dmg

MandrakeSoft Corporate Server 3.0

Mandriva ntp-4.2.0-2.2.C30mdk.i586.rpm
http://www.mandriva.com/en/download/

NTP NTP 4.2.4 p6

NTP ntp-4.2.4p7.tar.gz
http://archive.ntp.org/ntp4/ntp-4.2.4p7.tar.gz