diff --git a/ntp-4.2.6p5-cve-2016-9310.patch b/ntp-4.2.6p5-cve-2016-9310.patch
new file mode 100644
index 0000000..c5eb750
--- /dev/null
+++ b/ntp-4.2.6p5-cve-2016-9310.patch
@@ -0,0 +1,16 @@
+diff -up ntp-4.2.6p5/ntpd/ntp_control.c.cve-2016-9310 ntp-4.2.6p5/ntpd/ntp_control.c
+--- ntp-4.2.6p5/ntpd/ntp_control.c.cve-2016-9310	2016-11-21 16:30:56.826396891 +0100
++++ ntp-4.2.6p5/ntpd/ntp_control.c	2016-11-21 16:31:54.171830390 +0100
+@@ -88,9 +88,9 @@ static	struct ctl_proc control_codes[] =
+ 	{ CTL_OP_READVAR,	NOAUTH, read_variables },
+ 	{ CTL_OP_WRITEVAR,	AUTH,	write_variables },
+ 	{ CTL_OP_READCLOCK,	NOAUTH, read_clock_status },
+-	{ CTL_OP_WRITECLOCK,	NOAUTH, write_clock_status },
+-	{ CTL_OP_SETTRAP,	NOAUTH, set_trap },
+-	{ CTL_OP_UNSETTRAP,	NOAUTH, unset_trap },
++	{ CTL_OP_WRITECLOCK,	AUTH,   write_clock_status },
++	{ CTL_OP_SETTRAP,	AUTH,   set_trap },
++	{ CTL_OP_UNSETTRAP,	AUTH,   unset_trap },
+ 	{ CTL_OP_SAVECONFIG,	AUTH,	save_config },
+ 	{ CTL_OP_CONFIGURE,	AUTH,	configure },
+ 	{ NO_REQUEST,		0 }
diff --git a/ntp.spec b/ntp.spec
index e9cb5bb..baf2a9b 100644
--- a/ntp.spec
+++ b/ntp.spec
@@ -197,6 +197,8 @@ Patch73: ntp-4.2.6p5-cve-2016-7426.patch
 Patch74: ntp-4.2.6p5-cve-2016-7429.patch
 # ntpbz #3067
 Patch75: ntp-4.2.6p5-cve-2016-7433.patch
+# ntpbz #3118
+Patch76: ntp-4.2.6p5-cve-2016-9310.patch
 
 # handle unknown clock types
 Patch100: ntpstat-0.2-clksrc.patch
@@ -371,6 +373,7 @@ This package contains NTP documentation in HTML format.
 %patch73 -p1 -b .cve-2016-7426
 %patch74 -p1 -b .cve-2016-7429
 %patch75 -p1 -b .cve-2016-7433
+%patch76 -p1 -b .cve-2016-9310
 
 # ntpstat patches
 %patch100 -p1 -b .clksrc