What's new in OS X NTP Security Update -
Dec 23, 2014
- Available for: OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.5, OS X Yosemite v10.10.1
- Impact: A remote attacker may be able to execute arbitrary code
- Description: Several issues existed in ntpd that would have allowed an attacker to trigger buffer overflows. These issues were addressed through improved error checking.
- To verify the ntpd version, type the following command in Terminal: what /usr/sbin/ntpd.
- This update includes the following versions:
- Mountain Lion: ntp-77.1.1
- Mavericks: ntp-88.1.1
- Yosemite: ntp-92.5.1
- CVE-ID: CVE-2014-9295 (Stephen Roettger of the Google Security Team)