[ntp:security] [Bug 2655] Multiple vulnerabilities in ntpd

bugzilla-daemon at ntp.org bugzilla-daemon at ntp.org
Mon Nov 3 00:21:57 UTC 2014


--- Comment #7 from Harlan Stenn <stenn at ntp.org> 2014-11-03 00:21:57 UTC ---
(In reply to comment #4)

> 2) non-cryptographic random number generator with weak seed
>  * util/ntp-keygen.c:724 <gen_md5> (weak symmetric keys)
>  fix: use OS provided random numbers for crypto

This issue is now being tracked in bug 2666.

Configure bugmail: http://bugs.ntp.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.

More information about the security mailing list