CVE-2005-2496

NameCVE-2005-2496
DescriptionThe xntpd ntp (ntpd) daemon before 4.2.0b, when run with the -u option and using a string to specify the group, uses the group ID of the user instead of the group, which causes xntpd to run with different privileges than intended.
SourceCVE (at NVD; oss-sec, fulldisc, OSVDB, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, more)
ReferencesDSA-801-1
NVD severitymedium (attack range: local)
Debian/oldstablenot vulnerable.
Debian/stablenot vulnerable.
Debian/testingnot vulnerable.
Debian/unstablenot vulnerable.

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
ntp (PTS)squeeze1:4.2.6.p2+dfsg-1fixed
squeeze (lts)1:4.2.6.p2+dfsg-1+deb6u3fixed
wheezy1:4.2.6.p5+dfsg-2+deb7u1fixed
wheezy (security)1:4.2.6.p5+dfsg-2+deb7u4fixed
sid, jessie1:4.2.6.p5+dfsg-7fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
ntpsource(unstable)1:4.2.0a+stable-2sarge1medium
ntpsourceetch1:4.2.0a+stable-2sarge1medium
ntpsourcesarge1:4.2.0a+stable-2sarge1mediumDSA-801-1
ntpsourcewoody(not affected)DSA-801-1

Notes

I suspect DSA-801 is fixed by the non-root patches from Ubuntu??

Search for package or bug name: Reporting problems