[ntp:security] Regarding CVE-2014-9293 and CVE-2014-9294 fix patch for ntp-4.2.4p8

VijayRam LaxmiNarayanan ram_vec2000 at yahoo.com
Fri Jan 9 11:58:00 UTC 2015


Hi All,

I m building ntp-4.2.4p8 with CVE-2014-9293 and CVE-2014-9294 patches related to ntp-4.2.4p8

During build, I get the following error:

 ntp_random.c:(.text+0x396): undefined reference to `RAND_poll'
 ../libntp/libntp.a(ntp_random.o): In function `ntp_crypto_random_buf':
ntp_random.c:(.text+0x3a2): undefined reference to `RAND_bytes'
ntp_random.c:(.text+0x3ae): undefined reference to `ERR_get_error'
ntp_random.c:(.text+0x3b4): undefined reference to `ERR_error_string'
collect2: ld returned 1 exit status
make[3]: *** [ntpd] Error 1


I tried enabling openssl in the spec file, but did not succeed

Also gave the include path of openssl(rand.h file path) in spec file, again did not succeed

Also tried linking with libraries


Please let me know for furthur ideas


Thanks & regards
Vijayaram


More information about the security mailing list