[ntp:security] [Bug 3415] Provide a way to prevent authenticated symmetric passive peering

bugzilla-daemon at ntp.org bugzilla-daemon at ntp.org
Tue Mar 13 23:24:27 UTC 2018


contacto at agora-security.com changed:

           What    |Removed                     |Added
                 CC|                            |contacto at agora-security.com

--- Comment #5 from contacto at agora-security.com 2018-03-13 23:24:10 UTC ---
If I understand correctly, this is fixed in ntp-4.2.8p11, anyhow
http://support.ntp.org/bin/view/Main/NtpBug3415 is not very clear:
"Affects: All ntp-4 releases up to, but not including 4.2.8p7, and 4.3.0 up to,
but not including 4.3.92. Resolved in 4.2.8p11."

Does that means that 4.2.8p7-4.2.8p10 are not affected? And the patch was
released in version 4.2.8p11? How so? It's confusing for me.


Configure bugmail: http://bugs.ntp.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.

More information about the security mailing list