This bug was fixed in the package ntp - 1:4.2.8p12+dfsg-3ubuntu4.20.10.1
---------------
ntp (1:4.2.8p12+dfsg-3ubuntu4.20.10.1) groovy-security; urgency=medium
* SECURITY UPDATE: Null dereference attack in mode 6 packet (LP: #1891953)
- debian/patches/CVE-2019-8936.patch: Guard against operations
on NULL pointer in ntpd/ntp_control.c.
- CVE-2019-8936
* Fix FTBFS with GCC-10
- debian/rules: add -fcommon flag to CFLAGS
-- Brian Morton <[email protected]> Fri, 27 Nov 2020 16:10:51 -0500
** Changed in: ntp (Ubuntu Groovy)
Status: Confirmed => Fix Released
** Changed in: ntp (Ubuntu Focal)
Status: Confirmed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1891953
Title:
CVE-2019-8936
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/ntp/+bug/1891953/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
