[ubuntu/hardy-security] ntp 1:4.2.4p4+dfsg-3ubuntu2.3 (Accepted)
Ubuntu Installer
archive at ubuntu.com
Tue Dec 8 22:03:31 GMT 2009
ntp (1:4.2.4p4+dfsg-3ubuntu2.3) hardy-security; urgency=low
* SECURITY UPDATE: fix DoS with mode 7 (MODE_PRIVATE) packets
- debian/patches/CVE-2009-3563.patch: update ntpd/ntp_request.c to
not send a response packet for and rate limit logging of invalid mode 7
requests and responses
- CVE-2009-3563
Date: Thu, 03 Dec 2009 14:33:27 -0600
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/hardy/+source/ntp/1:4.2.4p4+dfsg-3ubuntu2.3
-------------- next part --------------
Format: 1.7
Date: Thu, 03 Dec 2009 14:33:27 -0600
Source: ntp
Binary: ntp ntpdate ntp-doc
Architecture: source
Version: 1:4.2.4p4+dfsg-3ubuntu2.3
Distribution: hardy-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description:
ntp - Network Time Protocol daemon and utility programs
ntp-doc - Network Time Protocol documentation
ntpdate - client for setting system time from NTP servers
Changes:
ntp (1:4.2.4p4+dfsg-3ubuntu2.3) hardy-security; urgency=low
.
* SECURITY UPDATE: fix DoS with mode 7 (MODE_PRIVATE) packets
- debian/patches/CVE-2009-3563.patch: update ntpd/ntp_request.c to
not send a response packet for and rate limit logging of invalid mode 7
requests and responses
- CVE-2009-3563
Files:
251a7ead6fcf835535176b89ed7cc3d4 1046 net optional ntp_4.2.4p4+dfsg-3ubuntu2.3.dsc
dfb60aa2cd60f61907856f5b50c8fc46 287172 net optional ntp_4.2.4p4+dfsg-3ubuntu2.3.diff.gz
Original-Maintainer: Debian NTP Team <pkg-ntp-maintainers at lists.alioth.debian.org>
More information about the Hardy-changes
mailing list