Viewing all changes in revision 70.
- Committer: Package Import Robot
- Date: 2015-04-13 09:05:27 UTC
- Revision ID: package-import@ubuntu.com-20150413090527-65vhmois8kv2ok0v
* SECURITY UPDATE: symmetric key unauthenticated packet MITM attack
- debian/patches/CVE-2015-1798.patch: reject packets without MAC in
ntpd/ntp_proto.c.
- CVE-2015-1798
* SECURITY UPDATE: symmetric association DoS attack
- debian/patches/CVE-2015-1799.patch: don't update state variables when
authentication fails in ntpd/ntp_proto.c.
- CVE-2015-1799
* SECURITY UPDATE: ntp-keygen infinite loop or lack of randonmess on big
endian platforms
- debian/patches/ntp-keygen-endless-loop.patch: fix logic in
util/ntp-keygen.c.
- CVE number pending
- debian/patches/CVE-2015-1798.patch: reject packets without MAC in
ntpd/ntp_proto.c.
- CVE-2015-1798
* SECURITY UPDATE: symmetric association DoS attack
- debian/patches/CVE-2015-1799.patch: don't update state variables when
authentication fails in ntpd/ntp_proto.c.
- CVE-2015-1799
* SECURITY UPDATE: ntp-keygen infinite loop or lack of randonmess on big
endian platforms
- debian/patches/ntp-keygen-endless-loop.patch: fix logic in
util/ntp-keygen.c.
- CVE number pending
- files added:
- .pc/CVE-2015-1798.patch
- .pc/CVE-2015-1798.patch/ntpd
- .pc/CVE-2015-1799.patch
- .pc/CVE-2015-1799.patch/ntpd
- .pc/ntp-keygen-endless-loop.patch
- .pc/ntp-keygen-endless-loop.patch/util
- files modified:
- .pc/applied-patches
expand all
collapse all
added
removed
