Stay Secure with the Latest Linux Advisories

security advisorysoftware updateFedora

Fedora 30: FEDORA-2019-b0c7f0d94a Critical: ntp Crafted Attack Mitigation

Security fix for CVE-2019-8936. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-b0c7f0d94a 2019-04-07 00:00:53.301195 --------------------------------------------------------------------------------Name : ntp Product : Fedora 30 Version : 4.2.8p13 Release : 1.fc30 URL : http://www.ntp.org Summary : The NTP daemon and utilities Description : The Network Time Protocol (NTP) is used to synchronize a computer's time with another reference time source. This package includes ntpd (a daemon which continuously adjusts system time) and utilities used to query and configure the ntpd daemon. Perl scripts are in the ntp-perl package, ntpdate is in the ntpdate package and sntp is in the sntp package. The documentation in HTML format is in the ntp-doc package. --------------------------------------------------------------------------------Update Information: Security fix for CVE-2019-8936 --------------------------------------------------------------------------------References: [ 1 ] Bug #1686605 - CVE-2019-8936 ntp: Crafted null dereference attack in authenticated mode 6 packet https://bugzilla.redhat.com/show_bug.cgi?id=1686605 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-b0c7f0d94a' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Fedora 30 released a critical security update for ntp addressing the significant vulnerability CVE-2019-8936. Remember to apply these updates promptly.. Fedora NTP Security, Crafted Attack Mitigation, System Update. . Severity: Critical. LinuxSecurity.com Team

Apr 06, 2019 •Critical Fedora