[ubuntu/karmic] ntp 1:4.2.4p6+dfsg-1ubuntu1 (Accepted)

Steve Langasek steve.langasek at ubuntu.com
Wed Apr 29 10:25:13 BST 2009 

ntp (1:4.2.4p6+dfsg-1ubuntu1) karmic; urgency=low

  * Merge from Debian unstable, remaining changes:
    - debian/ntp.conf, debian/ntpdate.default: Change default server to
      ntp.ubuntu.com.
    - debian/ntpdate.ifup: Stop ntp before running ntpdate when an interface
      comes up, then start again afterwards
    - debian/ntp.init, debian/rules: Only stop when entering single user mode.
    - debian/man/ntpdate.8 - fix debian shipped manpage; patch by
      Josh Holland <jrh at joshh.co.uk>
  * Dropped changes, merged in Debian:
    - Build against libcap2 instead of libcap1, fixing a kernel warning
      about using an old interface.
  * Dropped changes, superseded upstream/in Debian:
    - debian/patches/CVE-2009-0021.patch: update ntpd/ntp_crypto.c to properly
      check the return code of EVP_VerifyFinal()
    - debian/patches/ipv6-gnu-source.patch: Define _GNU_SOURCE to make IPv6
      work.
  * Fixes LP: #217699

ntp (1:4.2.4p6+dfsg-1) unstable; urgency=low

  * New upstream release
    - Updated ntpdate-ipv6.patch, autotools.patch
    - Obsoletes no-ipv6-fix.patch, CVE-2009-0021.patch
  * Switched build dependency from libcap-dev to libcap2-dev (closes: #474639)
  * Added -D_GNU_SOURCE to CPPFLAGS, to support glibc 2.8 (closes: #507806)
  * Recognize "adjust" in ntpdate logcheck rules (closes: #493907)
  * Removed "dynamic" key word from default ntp.conf, because this is now
    obsolete and the default

ntp (1:4.2.4p4+dfsg-8) unstable; urgency=low

  * It did not properly check the return value of EVP_VerifyFinal
    which results in an malformed DSA signature being treated as
    a good signature rather than as an error.  (CVE-2009-0021)

Date: Wed, 29 Apr 2009 06:08:19 +0000
Changed-By: Steve Langasek <steve.langasek at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Steve Langasek <steve.langasek at canonical.com>
https://launchpad.net/ubuntu/karmic/+source/ntp/1:4.2.4p6+dfsg-1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Wed, 29 Apr 2009 06:08:19 +0000
Source: ntp
Binary: ntp ntpdate ntp-doc
Architecture: source
Version: 1:4.2.4p6+dfsg-1ubuntu1
Distribution: karmic
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Steve Langasek <steve.langasek at ubuntu.com>
Description: 
 ntp        - Network Time Protocol daemon and utility programs
 ntp-doc    - Network Time Protocol documentation
 ntpdate    - client for setting system time from NTP servers
Closes: 474639 493907 507806
Launchpad-Bugs-Fixed: 217699
Changes: 
 ntp (1:4.2.4p6+dfsg-1ubuntu1) karmic; urgency=low
 .
   * Merge from Debian unstable, remaining changes:
     - debian/ntp.conf, debian/ntpdate.default: Change default server to
       ntp.ubuntu.com.
     - debian/ntpdate.ifup: Stop ntp before running ntpdate when an interface
       comes up, then start again afterwards
     - debian/ntp.init, debian/rules: Only stop when entering single user mode.
     - debian/man/ntpdate.8 - fix debian shipped manpage; patch by
       Josh Holland <jrh at joshh.co.uk>
   * Dropped changes, merged in Debian:
     - Build against libcap2 instead of libcap1, fixing a kernel warning
       about using an old interface.
   * Dropped changes, superseded upstream/in Debian:
     - debian/patches/CVE-2009-0021.patch: update ntpd/ntp_crypto.c to properly
       check the return code of EVP_VerifyFinal()
     - debian/patches/ipv6-gnu-source.patch: Define _GNU_SOURCE to make IPv6
       work.
   * Fixes LP: #217699
 .
 ntp (1:4.2.4p6+dfsg-1) unstable; urgency=low
 .
   * New upstream release
     - Updated ntpdate-ipv6.patch, autotools.patch
     - Obsoletes no-ipv6-fix.patch, CVE-2009-0021.patch
   * Switched build dependency from libcap-dev to libcap2-dev (closes: #474639)
   * Added -D_GNU_SOURCE to CPPFLAGS, to support glibc 2.8 (closes: #507806)
   * Recognize "adjust" in ntpdate logcheck rules (closes: #493907)
   * Removed "dynamic" key word from default ntp.conf, because this is now
     obsolete and the default
 .
 ntp (1:4.2.4p4+dfsg-8) unstable; urgency=low
 .
   * It did not properly check the return value of EVP_VerifyFinal
     which results in an malformed DSA signature being treated as
     a good signature rather than as an error.  (CVE-2009-0021)
Checksums-Sha1: 
 8773052be5e09559d892bb73781980a3a966d0cd 1540 ntp_4.2.4p6+dfsg-1ubuntu1.dsc
 97288e75f109d19df3f47cf149b6f61cd9d879a6 2836728 ntp_4.2.4p6+dfsg.orig.tar.gz
 5db89dcb8a1f1b1c9b688814186b3321b9be9769 339230 ntp_4.2.4p6+dfsg-1ubuntu1.diff.gz
Checksums-Sha256: 
 47d3f38cf8f3026727db628f3057c1aba3c2cd1ffc72b9b001e65080e5f5adc3 1540 ntp_4.2.4p6+dfsg-1ubuntu1.dsc
 a4999efd19b3ff02696ed3dd277aadccafea998b6160f1e6d43ec73185b700fb 2836728 ntp_4.2.4p6+dfsg.orig.tar.gz
 e97207ad3b9712be3d83b0fdcbcb5e4d2828c89a218fcf53974286dd4fc494da 339230 ntp_4.2.4p6+dfsg-1ubuntu1.diff.gz
Files: 
 eb338e4b1dc16450fc4d64fbfd4ac8a4 1540 net optional ntp_4.2.4p6+dfsg-1ubuntu1.dsc
 bddc66cdc7c35c0cb22cc84cad770c65 2836728 net optional ntp_4.2.4p6+dfsg.orig.tar.gz
 f85cb427715fbce8a600eb56dad67e28 339230 net optional ntp_4.2.4p6+dfsg-1ubuntu1.diff.gz
Original-Maintainer: Debian NTP Team <pkg-ntp-maintainers at lists.alioth.debian.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iD8DBQFJ+BviKN6ufymYLloRAv5nAKCK19sk8aeuSRqBnR8OLmE/o16XdgCeP8yE
eFX4XQjfPYAkbyjdcFYpF6A=
=+0cg
-----END PGP SIGNATURE-----

More information about the Karmic-changes mailing list