← Back to branch summary

~ubuntu-branches/debian/squeeze/ntp/squeeze-201010051545

~ubuntu-branches/debian/squeeze/ntp/squeeze-201010051545

« back to all changes in this revision

Viewing changes to NEWS

Committer: Bazaar Package Importer
Author(s): Kurt Roeckx
Date: 2009-11-26 22:16:37 UTC
mfrom: (1.2.6 upstream)
Revision ID: james.westby@ubuntu.com-20091126221637-lbtdp0ax1yg9t0bx

Tags: 1:4.2.4p7+dfsg-4

http://bugs.debian.org/558145

* Use uname -s instead of dpkg-architecture to found the kernel we're
running on. dpkg-architecture is part of dpkg-dev. (Closes: #558145)
* Make the package fail to build on hurd since it does not provided
the needed system calls for ntpd to work.

files added:
debian/patches/.dpkg-source-applied

debian/patches/kfreebsd.patch

debian/patches/mod_nano.patch

debian/patches/nanokernel-status.patch

debian/source

debian/source/format

m4/libtool.m4

m4/ltoptions.m4

m4/ltsugar.m4

m4/ltversion.m4

m4/lt~obsolete.m4

ports/winnt/instsrv/Instsrv.vcproj

ports/winnt/libntp/libntp.vcproj

ports/winnt/ntp-keygen/ntpkeygen.vcproj

ports/winnt/ntp.sln

ports/winnt/ntpd/ntpd.vcproj

ports/winnt/ntpdate/ntpdate.vcproj

ports/winnt/ntpdc/ntpdc.vcproj

ports/winnt/ntpq/ntpq.vcproj

files removed:
debian/patches/CVE-2009-0159.patch

debian/patches/CVE-2009-1252.patch

files modified:
ChangeLog

CommitLog

Makefile.am

Makefile.in

NEWS

README

README.bk

README.patches

WHERE-TO-START

aclocal.m4

adjtimed/Makefile.in

adjtimed/adjtimed.c

build

clockstuff/Makefile.in

config.h.in

configure

configure.ac

debian/changelog

debian/control

debian/ntp.init

debian/patches/autotools.patch

debian/patches/dfsg.patch

debian/patches/libedit.patch

debian/patches/ntpd-ni-maxhost.patch

debian/patches/series

debian/rules

flock-build

html/clockopt.html

html/drivers/driver40.html

include/Makefile.am

include/Makefile.in

include/copyright.def

include/isc/Makefile.in

include/ntp.h

include/ntp_control.h

include/ntp_debug.h

include/ntp_md5.h

include/ntp_stdlib.h

include/ntp_syscall.h

include/ntpd.h

include/version.def

kernel/Makefile.in

kernel/sys/Makefile.in

libntp/Makefile.am

libntp/Makefile.in

libntp/a_md5encrypt.c

libopts/Makefile.in

libparse/Makefile.am

libparse/Makefile.in

ltmain.sh

ntpd/Makefile.am

ntpd/Makefile.in

ntpd/cmd_args.c

ntpd/ntp_crypto.c

ntpd/ntp_intres.c

ntpd/ntp_io.c

ntpd/ntp_loopfilter.c

ntpd/ntp_request.c

ntpd/ntp_timer.c

ntpd/ntpd-opts.c

ntpd/ntpd-opts.h

ntpd/ntpd-opts.texi

ntpd/ntpd.1

ntpd/ntpd.c

ntpd/ntpdsim-opts.c

ntpd/ntpdsim-opts.h

ntpd/ntpdsim-opts.texi

ntpd/ntpdsim.1

ntpd/refclock_dumbclock.c

ntpd/refclock_hopfser.c

ntpd/refclock_jjy.c

ntpd/refclock_nmea.c

ntpd/refclock_palisade.c

ntpdate/Makefile.am

ntpdate/Makefile.in

ntpdate/ntpdate.c

ntpdc/Makefile.am

ntpdc/Makefile.in

ntpdc/ntpdc-opts.c

ntpdc/ntpdc-opts.h

ntpdc/ntpdc-opts.texi

ntpdc/ntpdc.1

ntpdc/ntpdc.c

ntpq/Makefile.am

ntpq/Makefile.in

ntpq/ntpq-opts.c

ntpq/ntpq-opts.h

ntpq/ntpq-opts.texi

ntpq/ntpq.1

ntpq/ntpq.c

packageinfo.sh

parseutil/Makefile.in

ports/winnt/include/clockstuff.h

ports/winnt/include/config.h

ports/winnt/include/ntp_iocompletionport.h

ports/winnt/libntp/SetSystemTime.c

ports/winnt/ntpd/nt_clockstuff.c

ports/winnt/ntpd/ntp_iocompletionport.c

ports/winnt/ntpd/win32_io.c

scripts/Makefile.am

scripts/Makefile.in

scripts/ntptrace.in

util/Makefile.am

util/Makefile.in

util/ntp-keygen-opts.c

util/ntp-keygen-opts.h

util/ntp-keygen-opts.texi

util/ntp-keygen.1

util/ntp-keygen.c

version

version.m4

Show diffs side-by-side

added added

removed removed

1

NTP 4.2.4p7 (Harlan Stenn <stenn@ntp.org>, 2009/05/04)

2

3

Focus: Security and Bug Fixes

4

5

Severity: HIGH

6

7

This release fixes the following high-severity vulnerability:

8

9

* [Sec 1151] Remote exploit if autokey is enabled. CVE-2009-1252

10

11

See http://support.ntp.org/security for more information.

12

13

If autokey is enabled (if ntp.conf contains a "crypto pw whatever"

14

line) then a carefully crafted packet sent to the machine will cause

15

a buffer overflow and possible execution of injected code, running

16

with the privileges of the ntpd process (often root).

17

18

Credit for finding this vulnerability goes to Chris Ries of CMU.

19

20

This release fixes the following low-severity vulnerabilities:

21

22

* [Sec 1144] limited (two byte) buffer overflow in ntpq. CVE-2009-0159

23

Credit for finding this vulnerability goes to Geoff Keating of Apple.

24

25

* [Sec 1149] use SO_EXCLUSIVEADDRUSE on Windows

26

Credit for finding this issue goes to Dave Hart.

27

28

This release fixes a number of bugs and adds some improvements:

29

30

* Improved logging

31

* Fix many compiler warnings

32

* Many fixes and improvements for Windows

33

* Adds support for AIX 6.1

34

* Resolves some issues under MacOS X and Solaris

35

36

THIS IS A STRONGLY RECOMMENDED UPGRADE.

37

38

---

1

39

NTP 4.2.4p6 (Harlan Stenn <stenn@ntp.org>, 2009/01/07)

2

40

3

41

Focus: Security Fix

Older »