ntp: security bump to version 4.2.8p2

Fixes: CVE-2015-1798 - ntpd accepts unauthenticated packets with symmetric key crypto. CVE-2015-1799 - Authentication doesn't protect symmetric associations against DoS attacks. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2015-04-07 13:54:11 -03:00 · 2015-04-07 13:54:11 -03:00 · c765a7faa5
commit c765a7faa5
parent 6bf9e23332
2 changed files with 3 additions and 3 deletions
--- a/package/ntp/ntp.hash
+++ b/package/ntp/ntp.hash
@ -1,2 +1,2 @@
-# From http://www.eecis.udel.edu/~ntp/ntp_spool/ntp4/ntp-4.2/ntp-4.2.8p1.tar.gz.md5
-md5	65d8cdfae4722226fbe29863477641ed ntp-4.2.8p1.tar.gz
+# From http://www.eecis.udel.edu/~ntp/ntp_spool/ntp4/ntp-4.2/ntp-4.2.8p2.tar.gz.md5
+md5	fa37049383316322d060ec9061ac23a9	ntp-4.2.8p2.tar.gz
--- a/package/ntp/ntp.mk
+++ b/package/ntp/ntp.mk
@ -5,7 +5,7 @@
 ################################################################################

 NTP_VERSION_MAJOR = 4.2
-NTP_VERSION = $(NTP_VERSION_MAJOR).8p1
+NTP_VERSION = $(NTP_VERSION_MAJOR).8p2
 NTP_SITE = http://www.eecis.udel.edu/~ntp/ntp_spool/ntp4/ntp-$(NTP_VERSION_MAJOR)
 NTP_DEPENDENCIES = host-pkgconf libevent
 NTP_LICENSE = ntp license