ntp 1:4.2.4p8+dfsg-1ubuntu2.2 source package in Ubuntu
Changelog
ntp (1:4.2.4p8+dfsg-1ubuntu2.2) lucid-security; urgency=medium
* SECURITY UPDATE: weak default key in config_auth()
- debian/patches/CVE-2014-9293.patch: use openssl for random key in
ntpd/ntp_config.c, ntpd/ntpd.c.
- CVE-2014-9293
* SECURITY UPDATE: non-cryptographic random number generator with weak
seed used by ntp-keygen to generate symmetric keys
- debian/patches/CVE-2014-9294.patch: use openssl for random key in
include/ntp_random.h, libntp/ntp_random.c, util/ntp-keygen.c.
- CVE-2014-9294
* SECURITY UPDATE: buffer overflows in crypto_recv() and ctl_putdata()
- debian/patches/CVE-2014-9295.patch: check lengths in
ntpd/ntp_control.c, ntpd/ntp_crypto.c.
- CVE-2014-9295
-- Marc Deslauriers <email address hidden> Sat, 20 Dec 2014 06:31:53 -0500
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Lucid
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- net
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| ntp_4.2.4p8+dfsg.orig.tar.gz | 2.7 MiB | d2db861ef53a0b2d252e1ab5406fe12868cdfa7d8dcdbc37ed8f3a764df26208 |
| ntp_4.2.4p8+dfsg-1ubuntu2.2.debian.tar.gz | 408.1 KiB | 08bb48ef1da73df41d26c3532b2f32bc34ff56d64aa6b7a73251437b253f7d41 |
| ntp_4.2.4p8+dfsg-1ubuntu2.2.dsc | 2.2 KiB | e16b110311093685ab673c1859ad2e02d0814c7cdcc6e6fd4c99e10317229bcb |
Available diffs
Binary packages built by this source
- ntp: No summary available for ntp in ubuntu lucid.
No description available for ntp in ubuntu lucid.
- ntp-doc: No summary available for ntp-doc in ubuntu lucid.
No description available for ntp-doc in ubuntu lucid.
- ntpdate: No summary available for ntpdate in ubuntu lucid.
No description available for ntpdate in ubuntu lucid.
