Extreme Networks

Paul11 · ‎12-29-2016

When do LEAP Second Security Vulnerability will happen again in end of December 2016???

Is Vulnerability or 2015 002 or any Leap Second going to happen end of this December 2016???

Paul11 · ‎12-29-2016

i cannot upgrade to 16.2.1 due to hardware limitation.

so i can say that the issue Vulnerability may happen in December 31, 2016 right?



Ronald_Dvorak · ‎12-29-2016

So you'd either upgrade or disable the NTP.
Sorry I wasn't aware that v15 is still a thing 🙂

Ronald_Dvorak · ‎12-29-2016

from ... https://gtacknowledge.extremenetworks.com/articles/Vulnerability_Notice/VN-2015-002-Leap-Second?_ga=...

ExtremeXOS (all products)

Vulnerable: Fixed
Vulnerable Component: Kernel
Conditions when component vulnerability occurs: Next leap second will be added on 30 June 2015. While logging this event via printk, kernel deadlock can occur due to bad locking. The fix will address future leap second events.
Product version(s) affected: All EXOS products
Workaround: Disable ntpd for at least 24 hours before leap second period.
Fixed In: EXOS 16.2.1, and 21.1.1

Paul11 · ‎12-29-2016

Hi Vellachery,

thanks for the article.

The next leap second adjustment is going to occur on December 31, 2016, at 23:59:60 UTC and effect to X450a-24x 15.3.3.5 ???

Paul11 · ‎12-29-2016

i am running NTP on X450a-24x 15.3.3.5

Extreme Networks

LEAP Second Security Vulnerability - Urgent - Attention please answer ASAP.

LEAP Second Security Vulnerability - Urgent - Attention please answer ASAP.