Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Debian: DSA-5466-1 Moderate: NTPSEC Crash Risk From NTS Client Requests

debian
Calendar Grey August 4, 2023
Debian Logo
An update for ntpsec has been released to mitigate a potential crash vulnerability tied to NTS client requests within the Debian implementation of the secure time protocol.
It was discovered that ntpd in ntpsec, a secure, hardened, and improved implementation derived from the original NTP project, could crash if NTS is disabled and an NTS-enabled clie...
Topics%20covered

Topics Covered

security advisory update debian moderate severity crash risk ntpsec NTS client requests

Summary

For the stable distribution (bookworm), this problem has been fixed in
version 1.2.2+dfsg1-1+deb12u1.

We recommend that you upgrade your ntpsec packages.

For the detailed security status of ntpsec please refer to its security
tracker page at:
https://security-tracker.debian.org/tracker/source-package/ntpsec

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/



Package: ntpsec
CVE ID: CVE-2023-4012

Topics%20covered

Topics Covered

security advisory update debian moderate severity crash risk ntpsec NTS client requests

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here