This bug was fixed in the package ntpsec - 1.1.1+dfsg1-2ubuntu0.1
---
ntpsec (1.1.1+dfsg1-2ubuntu0.1) cosmic-security; urgency=medium
* Backport three commits from 1.1.3 to fix (LP: #1812458)
- CVE-2019-6442: "An authenticated attacker can write one byte out of
bounds in
This bug was fixed in the package ntpsec - 1.1.0+dfsg1-1ubuntu0.2
---
ntpsec (1.1.0+dfsg1-1ubuntu0.2) bionic-security; urgency=medium
* Backport three commits from 1.1.3 to fix (LP: #1812458)
- CVE-2019-6442: "An authenticated attacker can write one byte out of
bounds in
ACK on the debdiffs in #5 and #6. I will build them as security updates
and will release them tomorrow. Thanks!
** Changed in: ntpsec (Ubuntu Bionic)
Status: Confirmed => Fix Committed
** Changed in: ntpsec (Ubuntu Cosmic)
Status: Confirmed => Fix Committed
--
You received this
Thanks for the correction. Targeting -security makes obvious sense in
hindsight, but I'm new to this. I've attached new debdiffs (bionic-
security.debdiff and cosmic-security.debdiff) targeting the correct
series.
--
You received this bug notification because you are a member of Ubuntu
Bugs,
** Patch added: "Corrected debdiff for cosmic targetting cosmic-security"
https://bugs.launchpad.net/ubuntu/+source/ntpsec/+bug/1812458/+attachment/5231596/+files/cosmic-security.debdiff
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to
** Patch added: "Corrected debdiff for bionic targetting bionic-security"
https://bugs.launchpad.net/ubuntu/+source/ntpsec/+bug/1812458/+attachment/5231595/+files/bionic-security.debdiff
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to
Since this is a security bug and you've provided targeted fixes, I'm
subscribing ubuntu-security-sponsors instead of ubuntu-sponsors. You
might want to update the series in your patches from bionic-security to
cosmic-security.