ntp 1:4.2.4p8+dfsg-1ubuntu2.2 source package in Ubuntu

Changelog

ntp (1:4.2.4p8+dfsg-1ubuntu2.2) lucid-security; urgency=medium

  * SECURITY UPDATE: weak default key in config_auth()
    - debian/patches/CVE-2014-9293.patch: use openssl for random key in
      ntpd/ntp_config.c, ntpd/ntpd.c.
    - CVE-2014-9293
  * SECURITY UPDATE: non-cryptographic random number generator with weak
    seed used by ntp-keygen to generate symmetric keys
    - debian/patches/CVE-2014-9294.patch: use openssl for random key in
      include/ntp_random.h, libntp/ntp_random.c, util/ntp-keygen.c.
    - CVE-2014-9294
  * SECURITY UPDATE: buffer overflows in crypto_recv() and ctl_putdata()
    - debian/patches/CVE-2014-9295.patch: check lengths in
      ntpd/ntp_control.c, ntpd/ntp_crypto.c.
    - CVE-2014-9295
 -- Marc Deslauriers <email address hidden>   Sat, 20 Dec 2014 06:31:53 -0500

Upload details

Uploaded by:
Marc Deslauriers on 2014-12-20
Uploaded to:
Lucid
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
net
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
ntp_4.2.4p8+dfsg.orig.tar.gz 2.7 MiB d2db861ef53a0b2d252e1ab5406fe12868cdfa7d8dcdbc37ed8f3a764df26208
ntp_4.2.4p8+dfsg-1ubuntu2.2.debian.tar.gz 408.1 KiB 08bb48ef1da73df41d26c3532b2f32bc34ff56d64aa6b7a73251437b253f7d41
ntp_4.2.4p8+dfsg-1ubuntu2.2.dsc 2.2 KiB e16b110311093685ab673c1859ad2e02d0814c7cdcc6e6fd4c99e10317229bcb

View changes file

Binary packages built by this source

ntp: No summary available for ntp in ubuntu lucid.

No description available for ntp in ubuntu lucid.

ntp-doc: No summary available for ntp-doc in ubuntu lucid.

No description available for ntp-doc in ubuntu lucid.

ntpdate: No summary available for ntpdate in ubuntu lucid.

No description available for ntpdate in ubuntu lucid.