CVE-2016-0727

Priority
Description
The crontab script in the ntp package before 1:4.2.6.p3+dfsg-1ubuntu3.11 on
Ubuntu 12.04 LTS, before 1:4.2.6.p5+dfsg-3ubuntu2.14.04.10 on Ubuntu 14.04
LTS, on Ubuntu Wily, and before 1:4.2.8p4+dfsg-3ubuntu5.3 on Ubuntu 16.04
LTS allows local users with access to the ntp account to write to arbitrary
files and consequently gain privileges via vectors involving statistics
directory cleanup.
Notes
Package
Source: ntp (LP Ubuntu Debian)
Upstream:needed
Ubuntu 16.04 ESM:released (1:4.2.8p4+dfsg-3ubuntu5.3)
Ubuntu 14.04 ESM:released (1:4.2.6.p5+dfsg-3ubuntu2.14.04.10)
Ubuntu 20.04 FIPS Compliant:not-affected (1:4.2.8p4+dfsg-3ubuntu6)
Patches:
More Information

Updated: 2022-04-13 12:09:04 UTC (commit f411bd370d482ef4385c4e751d121a4055fbc009)