Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Slackware 12.2: 2009-014-03 Critical NTP Security Fix Details

slackware
Calendar Grey January 15, 2009
Dist Slackware Esm H88
Recent updates for NTP packages in Slackware tackle severe security vulnerabilities with essential patches incorporated.
New ntp packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, 12.2, and -current to a fix security issue

Summary

Here are the details from the Slackware 12.2 ChangeLog: patches/packages/ntp-4.2.4p6-i486-1_slack12.2.tgz: [Sec 1111] Fix incorrect check of EVP_VerifyFinal()'s return value. For more information, see: http://lists.ntp.org/sympa/arc/announce/ http://ocert.org/advisories/ocert-2008-016.html https://www.cve.org/CVERecord?id=CVE-2009-0021 https://www.cve.org/CVERecord?id=CVE-2008-5077 (* Security fix *)

Topics%20covered

Topics Covered

security advisory critical security fix slackware ntp

Where Find New Packages

HINT: Getting slow download speeds from ftp.slackware.com? Give slackware.osuosl.org a try. This is another primary FTP site for Slackware that can be considerably faster than downloading directly from ftp.slackware.com.
Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating additional FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 8.1:
Updated package for Slackware 9.0:
Updated package for Slackware 9.1:
Updated package for Slackware 10.0:
Updated package for Slackware 10.1:
Updated package for Slackware 10.2:
Updated package for Slackware 11.0:
Updated package for Slackware 12.0:
Updated package for Slackware 12.1:
Updated package for Slackware 12.2:
Updated package for Slackware -current:

MD5 Signatures

Slackware 8.1 package: be95d635d683bfd19c1c66ef8fe258c1 ntp-4.2.4p6-i386-1_slack8.1.tgz
Slackware 9.0 package: 3f6e8c29282024f14af9ae9ae0eb5c62 ntp-4.2.4p6-i386-1_slack9.0.tgz
Slackware 9.1 package: 086b2b0e2d0caf1e2f34327c30a4a5bb ntp-4.2.4p6-i486-1_slack9.1.tgz
Slackware 10.0 package: 7fcfec9f57c1ab6a70b81d063e58a5e2 ntp-4.2.4p6-i486-1_slack10.0.tgz
Slackware 10.1 package: 59d6a05ca3e3e78e6c6845e307c55423 ntp-4.2.4p6-i486-1_slack10.1.tgz
Slackware 10.2 package: 5e43d7c1a34bdd65e808cec06cfb7ca1 ntp-4.2.4p6-i486-1_slack10.2.tgz
Slackware 11.0 package: 41d99a52c1395cb7d1e56fa5eb2d7fde ntp-4.2.4p6-i486-1_slack11.0.tgz
Slackware 12.0 package: 1396976a5b8ef4578277a12abcbb56c9 ntp-4.2.4p6-i486-1_slack12.0.tgz
Slackware 12.1 package: 297b2f95e96e0420088af2aed7213cc5 ntp-4.2.4p6-i486-1_slack12.1.tgz
Slackware 12.2 package: d587492d3306a487124cedc45f7d6d4a ntp-4.2.4p6-i486-1_slack12.2.tgz
Slackware -current package: e4b51a76744d8c271a9b7324f4355e4c ntp-4.2.4p6-i486-1.tgz

Severity
critical
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory critical security fix slackware ntp

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg ntp-4.2.4p6-i486-1_slack12.2.tgz

Related News

Your message here