lp:ubuntu/jaunty-updates/ntp

Branch merges

Propose for merging

No branches dependent on this one.

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related bugs

Related blueprints

30. By Jamie Strandboge on 2009-12-03

* SECURITY UPDATE: fix DoS with mode 7 (MODE_PRIVATE) packets
  - debian/patches/CVE-2009-3563.patch: update ntpd/ntp_request.c to
    not send a response packet for and rate limit logging of invalid mode 7
    requests and responses
  - CVE-2009-3563

29. By Jamie Strandboge on 2009-05-13

* SECURITY UPDATE: stack overflow in ntpd when autokey is enabled
  - debian/patches/CVE-2009-1252.patch: update ntpd/ntp_crypto.c to use
    snprintf() with NTP_MAXSTRLEN when writing to statstr. Also defensively
    adjust ntp_peer.c and ntp_timer.c to do the same.
  - CVE-2009-1252
* SECURITY UPDATE: stack overflow in ntpq when contacting malicious ntp
  server
  - debian/patches/CVE-2009-0159.patch: increase size of buffer in
    cookedprint() in ntpq/ntpq.c and adjust to use snprintf()
  - CVE-2009-0159

28. By Steve Langasek on 2009-03-20

Build against libcap2 instead of libcap1, fixing a kernel warning
about using an old interface. LP: #328376.

27. By Alexander Sack on 2009-02-23

* LP: #314810 - ntpdate typo in manpage
  - debian/man/ntpdate.8 - fix debian shipped manpage; patch by
    Josh Holland <email address hidden>

26. By Jamie Strandboge on 2009-01-06

* SECURITY UPDATE: clients treat malformed signatures as good when verifying
  server DSA and ECDSA certificates.
  - debian/patches/CVE-2009-0021.patch: update ntpd/ntp_crypto.c to properly
    check the return code of EVP_VerifyFinal()
  - CVE-2009-0021

25. By Matt LaPlante on 2008-12-04

Add ipv6-gnu-source.patch: Define _GNU_SOURCE to make IPv6 work.
(LP: #305043)

24. By Scott James Remnant (Canonical) on 2008-11-11

* Merge from debian unstable, remaining changes:
  - debian/ntp.conf, debian/ntpdate.default: Change default server to
    ntp.ubuntu.com.
  - debian/ntpdate.ifup: Stop ntp before running ntpdate when an interface
    comes up, then start again afterwards (LP: #114505)
  - debian/ntp.init, debian/rules: Only stop when entering single user mode.

23. By Kees Cook on 2008-08-20

debian/ntpdate.ifup: use a different lockfile to avoid dead-locks
when restarting ntpd (LP: #246203).

22. By Mathias Gug on 2008-06-18

* Merge from debian unstable, remaining changes:
  - debian/ntp.conf, debian/ntpdate.default:
    - Change default server to ntp.ubuntu.com.
  - debian/control:
    - Set Ubuntu maintainer address.
  - debian/ntpdate.ifup:
    Stop ntp before running ntpdate when an interface
    comes up, then start again afterwards (LP: #114505)
* debian/rules:
  - Call update-rcd-params with manual arguments instead of defaults.
* debian/ntp.init:
  - Update LSB Default-Stop header.
* Dropped:
  - Update TearDown spec implementation:
    - Update version in conflicts/replaces to that which was shipped in
      edgy, which was later than that in Debian (due to the ubuntuX).
    - Add sysv-rc dependency.
    - debian/rules:
      - Call update-rcd-params with multiuser instead defaults.
  - debian/ntp-server.postinst (dapper upgrade):
    - Remove stop script symlinks from rc0 and rc6.

21. By Onno Benschop on 2008-03-06

Stop ntp before running ntpdate when an interface
comes up, then start again afterwards (LP: #114505)