Alerts This Week
Warning Icon 1 677
Alerts This Week
Warning Icon 1 677

openSUSE Leap 15.3: 2022:0845-1 Moderate: Chrony Security Fix

opensuse
Calendar Grey March 15, 2022
Dist Opensuse Esm H88
The latest release of chrony addresses a specific vulnerability while also providing improvements and bug fixes tailored for openSUSE users.
An update that solves one vulnerability, contains one feature and has 12 fixes is now available

Description

This update for chrony fixes the following issues:

Chrony was updated to 4.1, bringing features and bugfixes.

Update to 4.1

* Add support for NTS servers specified by IP address (matching Subject

Alternative Name in server certificate)

* Add source-specific configuration of trusted certificates

* Allow multiple files and directories with trusted certificates

* Allow multiple pairs of server keys and certificates

* Add copy option to server/pool directive

* Increase PPS lock limit to 40% of pulse interval

* Perform source selection immediately after loading dump files

* Reload dump files for addresses negotiated by NTS-KE server

* Update seccomp filter and add less restrictive level

* Restart ongoing name resolution on online command

* Fix dump files to not include uncorrected offset

* Fix initstepslew to accept time from own NTP clients

* Reset NTP address and port when no longer negotiated by NTS-KE...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory moderate bug fix time synchronization NTP openSUSE chrony

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap 15.3:

zypper in -t patch openSUSE-SLE-15.3-2022-845=1

Package List

- openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):

augeas-1.10.1-3.9.1

augeas-debuginfo-1.10.1-3.9.1

augeas-debugsource-1.10.1-3.9.1

augeas-devel-1.10.1-3.9.1

augeas-lense-tests-1.10.1-3.9.1

augeas-lenses-1.10.1-3.9.1

chrony-4.1-150300.16.3.1

chrony-debuginfo-4.1-150300.16.3.1

chrony-debugsource-4.1-150300.16.3.1

libaugeas0-1.10.1-3.9.1

libaugeas0-debuginfo-1.10.1-3.9.1

- openSUSE Leap 15.3 (x86_64):

augeas-devel-32bit-1.10.1-3.9.1

libaugeas0-32bit-1.10.1-3.9.1

libaugeas0-32bit-debuginfo-1.10.1-3.9.1

- openSUSE Leap 15.3 (noarch):

chrony-pool-empty-4.1-150300.16.3.1

chrony-pool-openSUSE-4.1-150300.16.3.1

chrony-pool-suse-4.1-150300.16.3.1

References

https://www.suse.com/security/cve/CVE-2020-14367.html

https://bugzilla.suse.com/1099272

https://bugzilla.suse.com/1115529

https://bugzilla.suse.com/1128846

https://bugzilla.suse.com/1162964

https://bugzilla.suse.com/1172113

https://bugzilla.suse.com/1173277

https://bugzilla.suse.com/1174075

https://bugzilla.suse.com/1174911

https://bugzilla.suse.com/1180689

https://bugzilla.suse.com/1181826

https://bugzilla.suse.com/1187906

https://bugzilla.suse.com/1190926

https://bugzilla.suse.com/1194229

Announcement ID: openSUSE-SU-2022:0845-1
Rating: moderate
Affected Products: openSUSE Leap 15.3 ble.

Topics%20covered

Topics Covered

security advisory moderate bug fix time synchronization NTP openSUSE chrony

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here