April 20, 2015, 05:04:03 pm *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Visit our home page for VL info. To search the old message board go to The first VL forum is temporarily offline until we can find a host for it. Thanks for your patience.
Now powered by KnowledgeDex.
   Home   Help Search Login Register  
Please support VectorLinux!
Pages: [1]
Author Topic: 090117 ntp-4.2.4p6 closes known security vulnerability [VL 5.9, VL 6.0]  (Read 9360 times)
Posts: 2876

« on: January 17, 2009, 05:50:03 pm »

A newly patched ntp package fixes a known security vulnerability:

This release fixes's CVE-2009-0021, a vulnerability affecting
the OpenSSL library relating to the incorrect checking of the return
value of EVP_VerifyFinal function.

Credit for finding this issue goes to the Google Security Team for
finding the original issue with OpenSSL, and to for finding
the problem in NTP and telling us about it.

This is a recommended upgrade.

Additional details can be found at:

Anyone running NTP on VL is advised to upgrade to these packages and to upgrade their openssl packages as well.

A new NTP package for VL 5.9 and VL 5.9.1 is now available in the testing repository.  A new VL 6.0 package will follow shortly.

eMachines EL-1300G desktop, 1.6GHz AMD Athlon 2650e CPU, 4GB RAM, nVidia GeForce 6150 SE video
CentOS 6.5 (will try VL64-7.1 soon)

Toshiba Satellite A135-S4727,  Intel Pentium T2080 / 1.73 GHz, 2GB RAM, Intel GMA 950

HP Mini 110 netbook, 1.6GHz Intel Atom CPU, 2GB RAM, Intel 950 video, VL 7.1
Posts: 1

« Reply #1 on: March 31, 2014, 01:11:37 am »

Have good knowledge with material of interest. Benefit from your web very much.

Pages: [1]
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2013, Simple Machines Valid XHTML 1.0! Valid CSS!