ntp 1:4.2.4p4+dfsg-3ubuntu2.2 source package in Ubuntu
Changelog
ntp (1:4.2.4p4+dfsg-3ubuntu2.2) hardy-security; urgency=low
* SECURITY UPDATE: stack overflow in ntpd when autokey is enabled
- debian/patches/CVE-2009-1252.patch: update ntpd/ntp_crypto.c to use
snprintf() with NTP_MAXSTRLEN when writing to statstr. Also defensively
adjust ntp_peer.c and ntp_timer.c to do the same.
- CVE-2009-1252
* SECURITY UPDATE: stack overflow in ntpq when contacting malicious ntp
server
- debian/patches/CVE-2009-0159.patch: increase size of buffer in
cookedprint() in ntpq/ntpq.c and adjust to use snprintf()
- CVE-2009-0159
-- Jamie Strandboge <email address hidden> Wed, 13 May 2009 12:42:39 -0500
Upload details
- Uploaded by:
- Jamie Strandboge
- Uploaded to:
- Hardy
- Original maintainer:
- Ubuntu Development Team
- Architectures:
- any
- Section:
- net
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| ntp_4.2.4p4+dfsg.orig.tar.gz | 2.7 MiB | 0eb217554dd7f058649f76ca95c669acee3b235daae3a43b08f70b36d636d2bd |
| ntp_4.2.4p4+dfsg-3ubuntu2.2.diff.gz | 280.0 KiB | ebf8e3eb797ddc4c531561f7625025c25620bb77013bc0e1f03f009295d937cf |
| ntp_4.2.4p4+dfsg-3ubuntu2.2.dsc | 1.0 KiB | 2f85f99d38f958ee166c4777aca2a7d244d04894eb96532b6295d28fbdd24f66 |
Available diffs
Binary packages built by this source
- ntp: No summary available for ntp in ubuntu hardy.
No description available for ntp in ubuntu hardy.
- ntp-doc: No summary available for ntp-doc in ubuntu hardy.
No description available for ntp-doc in ubuntu hardy.
- ntpdate: No summary available for ntpdate in ubuntu hardy.
No description available for ntpdate in ubuntu hardy.
