ubuntu/+source/ntp:ubuntu/zesty-proposed

Last commit made on 2017-07-12
Get this branch:
git clone -b ubuntu/zesty-proposed https://git.launchpad.net/ubuntu/+source/ntp
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/zesty-proposed
Repository:
lp:ubuntu/+source/ntp

Recent commits

170ef3b... by Christian Ehrhardt  on 2017-07-07

Import patches-unapplied version 1:4.2.8p9+dfsg-2ubuntu1.2 to ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 642e856e2918526188c7d3fd3e9ccd12f614773f

New changelog entries:
  * debian/ntpdate.if-up: Drop delta to stop/start service around ntpdate
    updates - fixes ntp restart storms due to network changes, fixes
    accidential start of ntp, avoids issues of ntpdate jumping too far while
    running ntp was supposed to drift (LP: #1593907)

642e856... by Marc Deslauriers on 2017-06-28

Import patches-unapplied version 1:4.2.8p9+dfsg-2ubuntu1.1 to ubuntu/zesty-security

Imported using git-ubuntu import.

Changelog parent: 5cba552f976e56926efb5a6432ca93cbbb4dd309

New changelog entries:
  * SECURITY UPDATE: DoS in the origin timestamp check
    - debian/patches/CVE-2016-9042.patch: comment out broken code in
      ntpd/ntp_proto.c.
    - CVE-2016-9042
  * SECURITY UPDATE: potential Overflows in ctl_put() functions
    - debian/patches/CVE-2017-6458.patch: check lengths in
      ntpd/ntp_control.c.
    - CVE-2017-6458
  * SECURITY UPDATE: overflow via long flagstr variable
    - debian/patches/CVE-2017-6460.patch: check length in ntpq/ntpq-subs.c.
    - CVE-2017-6460
  * SECURITY UPDATE: buffer overflow in DPTS refclock driver
    - debian/patches/CVE-2017-6462.patch: don't overrun buffer in
      ntpd/refclock_datum.c.
    - CVE-2017-6462
  * SECURITY UPDATE: DoS via invalid setting in a :config directive
    - debian/patches/CVE-2017-6463.patch: protect against overflow in
      ntpd/ntp_config.c.
    - CVE-2017-6463
  * SECURITY UPDATE: Dos via malformed mode configuration directive
    - debian/patches/CVE-2017-6464.patch: validate directives in
      ntpd/ntp_config.c, ntpd/ntp_proto.c.
    - CVE-2017-6464

5cba552... by Christian Ehrhardt  on 2016-12-01

Import patches-unapplied version 1:4.2.8p9+dfsg-2ubuntu1 to ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 871afc8a50675e64655a4a67725be95caf7c7d4c
Upload parent: 815dbeb605d91aee23c8aeabb4ff44c91f6f6890

New changelog entries:
  * Merge from Debian testing. Remaining changes (LP: #427775):
    + d/rules: enable debugging
    + d/rules, d/ntp.dirs, d/source_ntp.py: Add apport hook.
    + d/ntpdate.if-up: Fix interaction with openntpd. Stop ntp before
      running ntpdate when an interface comes up, then start again afterwards.
    + d/ntp.init: Only stop when entering single user mode
    + d/ntp.init don't use /var/lib/ntp/ntp.conf.dhcp if /etc/ntp.conf is
      newer, it can get stale. Patch by Simon Déziel. (refreshed to apply to
      new path /run/ntp.conf.dhcp)
    + d/ntp.conf, d/ntpdate.default: Change default server to ntp.ubuntu.com.
    + d/control: Add bison to Build-Depends (for ntpd/ntp_parser.y).
    + Fix ntpdate-debian to be able to parse new config of ntp
    + Add PPS support:
      - d/README.Debian: Add a PPS section to the README.Debian,
        removed all PPSkit one.
      - d/ntp.conf: Add some configuration examples from the offical
        documentation.
    + Add Apparmor bits not yet accepted in Debian
      - d/control: Add Suggests on apparmor.
      - d/source_ntp.py: Add filter on AppArmor profile names to prevent
        false positives from denials originating in other packages
      - d/apparmor-profile add samba winbindd pipe
      - Create etc/apparmor.d/{force-complain,tunables}/
  * Drop Changes:
    + SECURITY UPDATE: NTP statsdir cleanup cronjob insecure
      (was accepted in Debian).
    + d/control: different conflicts/replaces versions on apparmor (was a
      dependency on a higher apparmor version, but today all releases are newer)

815dbeb... by Christian Ehrhardt  on 2016-12-16

drop old bug numbers from changelog

Signed-off-by: Christian Ehrhardt <email address hidden>

a8dd179... by Christian Ehrhardt  on 2016-12-01

Mark release for zesty

Signed-off-by: Christian Ehrhardt <email address hidden>

580c0d2... by Christian Ehrhardt  on 2016-12-01

mention closing of 427775

Signed-off-by: Christian Ehrhardt <email address hidden>

f67eff5... by Christian Ehrhardt  on 2016-12-01

update-maintainer

fe49cb5... by Christian Ehrhardt  on 2016-12-01

reconstruct-changelog

d001471... by Christian Ehrhardt  on 2016-12-01

Revert d/control: different conflicts/replaces versions on apparmor (was a
dependency on a higher apparmor version, but today all releases are newer)
Note: That change was part of 1f3c0eba5d543bb07d299df727a9364e143d0e40 which
actually should have been split when creating logical in Yakkety cycle
(now it is taken out by this partial revert).

Signed-off-by: Christian Ehrhardt <email address hidden>

6850a9b... by Christian Ehrhardt  on 2016-12-01

merge-changelogs