On 2 Nov 2013, at 20:24, Karl Pielorz wrote:
So as I'd kind of guessed - it's not really vanilla 4.2.4p8 that it's
running, it's based on 4.2.4p8 with additional patches that have been
applied by FreeBSD, to address the applicable notifications?
Yes.
__
;>> installed the other day and updated to 9.2-R that it's using ntpd 4.2.4p8.
>>>
>>> They reckon that's had a lot of issues (e.g. CVE reports) against it - and
>>> it should be newer.
>>>
>>> I'm sure the one it has been 'update
On 11/1/2013 9:05 AM, Karl Pielorz wrote:
A friend who uses linux a lot happened to notice on a FreeBSD box I
installed the other day and updated to 9.2-R that it's using ntpd 4.2.4p8.
There are two ntpd's in ports: a newer version of the one in base (it's
literally a drop in r
--On 2 November 2013 01:18:24 +0100 Dimitry Andric wrote:
[1] http://www.cvedetails.com/vulnerability-list/vendor_id-2153/NTP.html
That page lists a bunch of CVEs, and the relevant ones have already had
FreeBSD security advisories:
CVE-2009-3563
http://www.freebsd.org/security/advi
On 01 Nov 2013, at 17:31, Tom Evans wrote:
> On Fri, Nov 1, 2013 at 4:05 PM, Karl Pielorz wrote:
>>
>> Hi,
>>
>> A friend who uses linux a lot happened to notice on a FreeBSD box I
>> installed the other day and updated to 9.2-R that it's using ntpd 4.2.4p
On Fri, Nov 1, 2013 at 4:05 PM, Karl Pielorz wrote:
>
> Hi,
>
> A friend who uses linux a lot happened to notice on a FreeBSD box I
> installed the other day and updated to 9.2-R that it's using ntpd 4.2.4p8.
>
> They reckon that's had a lot of issues (e.g. CVE
Hi,
A friend who uses linux a lot happened to notice on a FreeBSD box I
installed the other day and updated to 9.2-R that it's using ntpd 4.2.4p8.
They reckon that's had a lot of issues (e.g. CVE reports) against it - and
it should be newer.
I'm sure the one it has been &#
According to Ollivier Robert:
> Yes. It is in the works.
For those not following the commit logs, I updated ntpd to 4.2.4p8 in head.
For the release branches, a patch will be released (as we do not update whole
programs in these). After two weeks, it will be merged to stable/8.
4.2.6 (or .7,
According to pluknet:
Are there plans on updating contrib/ntp to the latest version?
Yes. It is in the works.
--
Ollivier ROBERT -=- FreeBSD: The Power to Serve! -=- robe...@keltia.freenix.fr
In memoriam to Ondine : http://ondine.keltia.net/
___
fr
Hi.
Are there plans on updating contrib/ntp to the latest version?
There was at least one security fix (and others at earlier versions):
+(4.2.4p8) 2009/12/08 Released by Harlan Stenn
+
+* [Sec 1331] DoS with mode 7 packets - CVE-2009-3563.
+
NetBSD already done that on Dec/9 (w/ MFC to 4.0.x).
10 matches
Mail list logo
