[Git][NTPsec/ntpsec][master] Add security fixes to NEWS
Matt Selsky
gitlab at mg.gitlab.com
Mon Jan 21 17:07:55 UTC 2019
Matt Selsky pushed to branch master at NTPsec / ntpsec
Commits:
ff969a6b by Matt Selsky at 2019-01-21T17:03:59Z
Add security fixes to NEWS
- - - - -
1 changed file:
- NEWS
Changes:
=====================================
NEWS
=====================================
@@ -17,6 +17,13 @@ flag1 mode bit of the local-clock driver.
== 2019-01-13: 1.1.3 ==
+Security fixes:
+
+* Out of bounds read in ctl_getitem() in ntp_control.c (GitLab #507, CVE-2019-6443)
+* Out of bounds read in process_control() in ntp_control.c (GitLab #508, CVE-2019-6444)
+* Authenticated remotely triggerable NULL pointer dereference in ntp_control.c (GitLab #509, CVE-2019-6445)
+* Authenticated out-of-bounds write in ntp_parser.y (GitLab #510, CVE-2019-6442)
+
Lots of typo fixes, documentation cleanups, test targets.
In memory of Arland D. Williams Jr.
View it on GitLab: https://gitlab.com/NTPsec/ntpsec/commit/ff969a6b861e67a4fe3fb7c1458f669424e720d9
--
View it on GitLab: https://gitlab.com/NTPsec/ntpsec/commit/ff969a6b861e67a4fe3fb7c1458f669424e720d9
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ntpsec.org/pipermail/vc/attachments/20190121/9df45b19/attachment-0001.html>
More information about the vc
mailing list