Date: Mon, 2 Nov 2015 11:47:22 +0300 From: Gleb Smirnoff <glebius@FreeBSD.org> To: Christian Weisgerber <naddy@mips.inka.de> Cc: freebsd-security@freebsd.org Subject: Re: FreeBSD Security Advisory FreeBSD-SA-15:25.ntp Message-ID: <20151102084722.GC78469@FreeBSD.org> In-Reply-To: <slrnn3ctrf.is2.naddy@lorvorc.mips.inka.de> References: <201510261236.t9QCa2xj044234@think.nginx.com> <slrnn3ctrf.is2.naddy@lorvorc.mips.inka.de>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, Nov 01, 2015 at 08:34:55PM +0000, Christian Weisgerber wrote: C> >============================================================================= C> > FreeBSD-SA-15:25.ntp Security Advisory C> > The FreeBSD Project C> > C> > Topic: Multiple vulnerabilities of ntp C> > C> > Category: contrib C> > Module: ntp C> > Announced: 2015-10-26 C> > Credits: Network Time Foundation C> > Affects: All supported versions of FreeBSD. C> > Corrected: 2015-10-26 11:35:40 UTC (stable/10, 10.2-STABLE) C> > 2015-10-26 11:36:55 UTC (releng/10.2, 10.2-RELEASE-p6) C> > 2015-10-26 11:37:31 UTC (releng/10.1, 10.1-RELEASE-p23) C> C> Unfortunately, this update has now lost support for RAWDCF refclocks C> in 10.1. C> C> > # fetch https://security.FreeBSD.org/patches/SA-15:25/ntp-101.patch.bz2 C> C> It's right there in /usr.sbin/ntp/config.h: C> C> /* DCF77 raw time code */ C> -#define CLOCK_RAWDCF 1 C> +/* #undef CLOCK_RAWDCF */ C> C> I have opened bug #204203 about this. C> https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=204203 That actually was broken at import of 4.2.8p3. Looks like we need yet another Errata :( -- Totus tuus, Glebius.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20151102084722.GC78469>