[ubuntu/lucid-security] ntp 1:4.2.4p8+dfsg-1ubuntu2.3 (Accepted)

Marc Deslauriers Mon, 09 Feb 2015 09:29:34 -0800

ntp (1:4.2.4p8+dfsg-1ubuntu2.3) lucid-security; urgency=medium

  * SECURITY UPDATE: denial of service and possible info leakage via
    extension fields
    - debian/patches/CVE-2014-9297.patch: properly check lengths in
      ntpd/ntp_crypto.c, ntpd/ntp_proto.c.
    - CVE-2014-9297
  * SECURITY UPDATE: IPv6 ACL bypass
    - debian/patches/CVE-2014-9298.patch: check for spoofed ::1 in
      ntpd/ntp_io.c.
    - CVE-2014-9298


Date: 2015-02-06 16:38:12.640957+00:00
Changed-By: Marc Deslauriers <marc.deslauri...@canonical.com>
https://launchpad.net/ubuntu/+source/ntp/1:4.2.4p8+dfsg-1ubuntu2.3

Sorry, changesfile not available.

-- 
Lucid-changes mailing list
Lucid-changes@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/lucid-changes

[ubuntu/lucid-security] ntp 1:4.2.4p8+dfsg-1ubuntu2.3 (Accepted)

Reply via email to