[ubuntu/hardy-security] ntp 1:4.2.4p4+dfsg-3ubuntu2.3 (Accepted)

Ubuntu Installer archive at ubuntu.com
Tue Dec 8 22:03:31 GMT 2009


ntp (1:4.2.4p4+dfsg-3ubuntu2.3) hardy-security; urgency=low

  * SECURITY UPDATE: fix DoS with mode 7 (MODE_PRIVATE) packets
    - debian/patches/CVE-2009-3563.patch: update ntpd/ntp_request.c to
      not send a response packet for and rate limit logging of invalid mode 7
      requests and responses
    - CVE-2009-3563

Date: Thu, 03 Dec 2009 14:33:27 -0600
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/hardy/+source/ntp/1:4.2.4p4+dfsg-3ubuntu2.3
-------------- next part --------------
Format: 1.7
Date: Thu, 03 Dec 2009 14:33:27 -0600
Source: ntp
Binary: ntp ntpdate ntp-doc
Architecture: source
Version: 1:4.2.4p4+dfsg-3ubuntu2.3
Distribution: hardy-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description: 
 ntp        - Network Time Protocol daemon and utility programs
 ntp-doc    - Network Time Protocol documentation
 ntpdate    - client for setting system time from NTP servers
Changes: 
 ntp (1:4.2.4p4+dfsg-3ubuntu2.3) hardy-security; urgency=low
 .
   * SECURITY UPDATE: fix DoS with mode 7 (MODE_PRIVATE) packets
     - debian/patches/CVE-2009-3563.patch: update ntpd/ntp_request.c to
       not send a response packet for and rate limit logging of invalid mode 7
       requests and responses
     - CVE-2009-3563
Files: 
 251a7ead6fcf835535176b89ed7cc3d4 1046 net optional ntp_4.2.4p4+dfsg-3ubuntu2.3.dsc
 dfb60aa2cd60f61907856f5b50c8fc46 287172 net optional ntp_4.2.4p4+dfsg-3ubuntu2.3.diff.gz
Original-Maintainer: Debian NTP Team <pkg-ntp-maintainers at lists.alioth.debian.org>


More information about the Hardy-changes mailing list