~ubuntu-branches/ubuntu/natty/ntp/natty

« back to all changes in this revision

Viewing changes to debian/patches/CVE-2009-1252.patch

Committer: Bazaar Package Importer
Author(s): Jamie Strandboge
Date: 2010-04-08 16:24:42 UTC
mfrom: (34.4.5 lucid)
Revision ID: james.westby@ubuntu.com-20100408162442-we41i5fzehptyhvu

Tags: 1:4.2.4p8+dfsg-1ubuntu2

https://launchpad.net/bugs/517701

debian/apparmor-profile: allow reading of /var/lib/ntp/ntp.conf.dhcp
(LP: #517701)

files added:
.pc

.pc/.version

.pc/applied-patches

.pc/autotools.patch

.pc/autotools.patch/Makefile.in

.pc/autotools.patch/aclocal.m4

.pc/autotools.patch/adjtimed

.pc/autotools.patch/adjtimed/Makefile.in

.pc/autotools.patch/clockstuff

.pc/autotools.patch/clockstuff/Makefile.in

.pc/autotools.patch/config.h.in

.pc/autotools.patch/configure

.pc/autotools.patch/include

.pc/autotools.patch/include/Makefile.in

.pc/autotools.patch/include/isc

.pc/autotools.patch/include/isc/Makefile.in

.pc/autotools.patch/kernel

.pc/autotools.patch/kernel/Makefile.in

.pc/autotools.patch/kernel/sys

.pc/autotools.patch/kernel/sys/Makefile.in

.pc/autotools.patch/libntp

.pc/autotools.patch/libntp/Makefile.in

.pc/autotools.patch/libopts

.pc/autotools.patch/libopts/Makefile.in

.pc/autotools.patch/libparse

.pc/autotools.patch/libparse/Makefile.in

.pc/autotools.patch/ltmain.sh

.pc/autotools.patch/m4

.pc/autotools.patch/m4/libtool.m4

.pc/autotools.patch/m4/ltoptions.m4

.pc/autotools.patch/m4/ltsugar.m4

.pc/autotools.patch/m4/ltversion.m4

.pc/autotools.patch/m4/lt~obsolete.m4

.pc/autotools.patch/ntpd

.pc/autotools.patch/ntpd/Makefile.in

.pc/autotools.patch/ntpdate

.pc/autotools.patch/ntpdate/Makefile.in

.pc/autotools.patch/ntpdc

.pc/autotools.patch/ntpdc/Makefile.in

.pc/autotools.patch/ntpq

.pc/autotools.patch/ntpq/Makefile.in

.pc/autotools.patch/parseutil

.pc/autotools.patch/parseutil/Makefile.in

.pc/autotools.patch/scripts

.pc/autotools.patch/scripts/Makefile.in

.pc/autotools.patch/util

.pc/autotools.patch/util/Makefile.in

.pc/dfsg.patch

.pc/dfsg.patch/Makefile.am

.pc/dfsg.patch/adjtimed

.pc/dfsg.patch/adjtimed/adjtimed.c

.pc/dfsg.patch/configure.ac

.pc/dfsg.patch/include

.pc/dfsg.patch/include/Makefile.am

.pc/dfsg.patch/include/ntp_md5.h

.pc/dfsg.patch/libntp

.pc/dfsg.patch/libntp/Makefile.am

.pc/dfsg.patch/libntp/a_md5encrypt.c

.pc/dfsg.patch/libparse

.pc/dfsg.patch/libparse/Makefile.am

.pc/dfsg.patch/ntpd

.pc/dfsg.patch/ntpd/Makefile.am

.pc/dfsg.patch/ntpdate

.pc/dfsg.patch/ntpdate/Makefile.am

.pc/dfsg.patch/ntpdc

.pc/dfsg.patch/ntpdc/Makefile.am

.pc/dfsg.patch/ntpq

.pc/dfsg.patch/ntpq/Makefile.am

.pc/dfsg.patch/scripts

.pc/dfsg.patch/scripts/Makefile.am

.pc/dfsg.patch/util

.pc/dfsg.patch/util/Makefile.am

.pc/doc.patch

.pc/doc.patch/html

.pc/doc.patch/html/clockopt.html

.pc/includes.patch

.pc/includes.patch/include

.pc/includes.patch/include/ntp.h

.pc/includes.patch/include/ntp_control.h

.pc/includes.patch/include/ntp_stdlib.h

.pc/includes.patch/include/ntpd.h

.pc/kfreebsd.patch

.pc/kfreebsd.patch/configure.ac

.pc/libedit.patch

.pc/libedit.patch/configure.ac

.pc/libedit.patch/ntpdc

.pc/libedit.patch/ntpdc/ntpdc.c

.pc/libedit.patch/ntpq

.pc/libedit.patch/ntpq/ntpq.c

.pc/mod_nano.patch

.pc/mod_nano.patch/include

.pc/mod_nano.patch/include/ntp_syscall.h

.pc/nanokernel-status.patch

.pc/nanokernel-status.patch/ntpd

.pc/nanokernel-status.patch/ntpd/ntp_loopfilter.c

.pc/ntpd-char-fix.patch

.pc/ntpd-char-fix.patch/ntpd

.pc/ntpd-char-fix.patch/ntpd/ntp_intres.c

.pc/ntpd-linux-caps.patch

.pc/ntpd-linux-caps.patch/ntpd

.pc/ntpd-linux-caps.patch/ntpd/ntpd.c

.pc/ntpd-ni-maxhost.patch

.pc/ntpd-ni-maxhost.patch/ntpd

.pc/ntpd-ni-maxhost.patch/ntpd/ntp_intres.c

.pc/ntpdate-ipv6.patch

.pc/ntpdate-ipv6.patch/ntpdate

.pc/ntpdate-ipv6.patch/ntpdate/ntpdate.c

.pc/ntptimeval.patch

.pc/ntptimeval.patch/include

.pc/ntptimeval.patch/include/ntp_syscall.h

.pc/ntptrace-getopt.patch

.pc/ntptrace-getopt.patch/scripts

.pc/ntptrace-getopt.patch/scripts/ntptrace.in

.pc/openssl-disable-check.patch

.pc/openssl-disable-check.patch/ntpd

.pc/openssl-disable-check.patch/ntpd/ntpd.c

.pc/openssl-disable-check.patch/util

.pc/openssl-disable-check.patch/util/ntp-keygen.c

debian/patches/kfreebsd.patch

debian/patches/mod_nano.patch

debian/patches/nanokernel-status.patch

debian/source

debian/source/format

debian/source_ntp.py

m4/libtool.m4

m4/ltoptions.m4

m4/ltsugar.m4

m4/ltversion.m4

m4/lt~obsolete.m4

ports/winnt/instsrv/Instsrv.vcproj

ports/winnt/libntp/libntp.vcproj

ports/winnt/ntp-keygen/ntpkeygen.vcproj

ports/winnt/ntp.sln

ports/winnt/ntpd/ntpd.vcproj

ports/winnt/ntpdate/ntpdate.vcproj

ports/winnt/ntpdc/ntpdc.vcproj

ports/winnt/ntpq/ntpq.vcproj

files removed:
debian/patches/CVE-2009-0159.patch

debian/patches/CVE-2009-1252.patch

debian/patches/fix-nano.patch

files modified:
ChangeLog

CommitLog

Makefile.am

Makefile.in

NEWS

README

README.bk

README.patches

WHERE-TO-START

aclocal.m4

adjtimed/Makefile.in

adjtimed/adjtimed.c

build

clockstuff/Makefile.in

config.h.in

configure

configure.ac

debian/apparmor-profile

debian/changelog

debian/control

debian/ntp.dirs

debian/ntp.init

debian/patches/autotools.patch

debian/patches/dfsg.patch

debian/patches/libedit.patch

debian/patches/ntpd-ni-maxhost.patch

debian/patches/series

debian/rules

flock-build

html/clockopt.html

html/drivers/driver40.html

include/Makefile.am

include/Makefile.in

include/copyright.def

include/isc/Makefile.in

include/ntp.h

include/ntp_control.h

include/ntp_debug.h

include/ntp_md5.h

include/ntp_stdlib.h

include/ntp_syscall.h

include/ntpd.h

include/version.def

kernel/Makefile.in

kernel/sys/Makefile.in

libntp/Makefile.am

libntp/Makefile.in

libntp/a_md5encrypt.c

libopts/Makefile.in

libparse/Makefile.am

libparse/Makefile.in

ltmain.sh

ntpd/Makefile.am

ntpd/Makefile.in

ntpd/cmd_args.c

ntpd/ntp_crypto.c

ntpd/ntp_intres.c

ntpd/ntp_io.c

ntpd/ntp_loopfilter.c

ntpd/ntp_request.c

ntpd/ntp_timer.c

ntpd/ntpd-opts.c

ntpd/ntpd-opts.h

ntpd/ntpd-opts.texi

ntpd/ntpd.1

ntpd/ntpd.c

ntpd/ntpdsim-opts.c

ntpd/ntpdsim-opts.h

ntpd/ntpdsim-opts.texi

ntpd/ntpdsim.1

ntpd/refclock_dumbclock.c

ntpd/refclock_hopfser.c

ntpd/refclock_jjy.c

ntpd/refclock_nmea.c

ntpd/refclock_palisade.c

ntpdate/Makefile.am

ntpdate/Makefile.in

ntpdate/ntpdate.c

ntpdc/Makefile.am

ntpdc/Makefile.in

ntpdc/ntpdc-opts.c

ntpdc/ntpdc-opts.h

ntpdc/ntpdc-opts.texi

ntpdc/ntpdc.1

ntpdc/ntpdc.c

ntpq/Makefile.am

ntpq/Makefile.in

ntpq/ntpq-opts.c

ntpq/ntpq-opts.h

ntpq/ntpq-opts.texi

ntpq/ntpq.1

ntpq/ntpq.c

packageinfo.sh

parseutil/Makefile.in

ports/winnt/include/clockstuff.h

ports/winnt/include/config.h

ports/winnt/include/ntp_iocompletionport.h

ports/winnt/libntp/SetSystemTime.c

ports/winnt/ntpd/nt_clockstuff.c

ports/winnt/ntpd/ntp_iocompletionport.c

ports/winnt/ntpd/win32_io.c

scripts/Makefile.am

scripts/Makefile.in

scripts/ntptrace.in

util/Makefile.am

util/Makefile.in

util/ntp-keygen-opts.c

util/ntp-keygen-opts.h

util/ntp-keygen-opts.texi

util/ntp-keygen.1

util/ntp-keygen.c

version

version.m4

Show diffs side-by-side

added added

removed removed

debian/patches/CVE-2009-1252.patch

CVE-2009-1252: Stack-based buffer overflow in the crypto_recv function in

ntp_crypto.c in ntpd in NTP before 4.2.4p7 and 4.2.5 before 4.2.5p74, when

OpenSSL and autokey are enabled, allows remote attackers to execute arbitrary

code via a crafted packet containing an extension field.

--- a/ntpd/ntp_crypto.c

+++ b/ntpd/ntp_crypto.c

@@ -570,7 +570,7 @@ crypto_recv(

peer->issuer = emalloc(vallen + 1);

strcpy(peer->issuer, peer->subject);

temp32 = (fstamp >> 16) & 0xffff;

- sprintf(statstr,

+ snprintf(statstr, sizeof(statstr),

"flags 0x%x host %s signature %s", fstamp,

peer->subject, OBJ_nid2ln(temp32));

record_crypto_stats(&peer->srcadr, statstr);

Older »