← Back to branch summary

~ubuntu-branches/ubuntu/lucid/ntp/lucid-security

~ubuntu-branches/ubuntu/lucid/ntp/lucid-security

Viewing all changes in revision 41.

Committer: Package Import Robot
Author(s): Marc Deslauriers
Date: 2015-02-06 09:32:14 UTC
Revision ID: package-import@ubuntu.com-20150206093214-41ko5yxza4gyqhg8

Tags: 1:4.2.4p8+dfsg-1ubuntu2.3

* SECURITY UPDATE: denial of service and possible info leakage via
  extension fields
  - debian/patches/CVE-2014-9297.patch: properly check lengths in
    ntpd/ntp_crypto.c, ntpd/ntp_proto.c.
  - CVE-2014-9297
* SECURITY UPDATE: IPv6 ACL bypass
  - debian/patches/CVE-2014-9298.patch: check for spoofed ::1 in
    ntpd/ntp_io.c.
  - CVE-2014-9298

files added:
.pc/CVE-2014-9297.patch

.pc/CVE-2014-9297.patch/ntpd

.pc/CVE-2014-9297.patch/ntpd/ntp_crypto.c

.pc/CVE-2014-9297.patch/ntpd/ntp_proto.c

.pc/CVE-2014-9298.patch

.pc/CVE-2014-9298.patch/ntpd

.pc/CVE-2014-9298.patch/ntpd/ntp_io.c

debian/patches/CVE-2014-9297.patch

debian/patches/CVE-2014-9298.patch

files modified:
.pc/applied-patches

debian/changelog

debian/patches/series

ntpd/ntp_crypto.c

ntpd/ntp_io.c

ntpd/ntp_proto.c

Show diffs side-by-side

added added

removed removed

.pc/CVE-2014-9297.patch/

.pc/CVE-2014-9297.patch/ntpd/

.pc/CVE-2014-9297.patch/ntpd/ntp_crypto.c

.pc/CVE-2014-9297.patch/ntpd/ntp_proto.c

.pc/CVE-2014-9298.patch/

.pc/CVE-2014-9298.patch/ntpd/

.pc/CVE-2014-9298.patch/ntpd/ntp_io.c

.pc/applied-patches

debian/changelog

debian/patches/CVE-2014-9297.patch

debian/patches/CVE-2014-9298.patch

debian/patches/series

ntpd/ntp_crypto.c

ntpd/ntp_proto.c

Older »