Debian Bug report logs -
#958027
CVE-2020-11868 affecting ntpsec?
Reply or subscribe to this bug.
Toggle useless messages
Report forwarded
to debian-bugs-dist@lists.debian.org, team@security.debian.org, Richard Laager <rlaager@wiktel.com>
:
Bug#958027
; Package src:ntpsec
.
(Fri, 17 Apr 2020 15:03:04 GMT) (full text, mbox, link).
Acknowledgement sent
to Moritz Muehlenhoff <jmm@debian.org>
:
New Bug report received and forwarded. Copy sent to team@security.debian.org, Richard Laager <rlaager@wiktel.com>
.
(Fri, 17 Apr 2020 15:03:04 GMT) (full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Source: ntpsec
Severity: important
Tags: security
CVE-2020-11868 was assigned for NTP, does this also affect ntpsec in some way?
http://support.ntp.org/bin/view/Main/NtpBug3592
http://bugs.ntp.org/3592
Cheers,
Moritz
Information forwarded
to debian-bugs-dist@lists.debian.org
:
Bug#958027
; Package src:ntpsec
.
(Fri, 17 Apr 2020 23:42:03 GMT) (full text, mbox, link).
Acknowledgement sent
to Richard Laager <rlaager@wiktel.com>
:
Extra info received and forwarded to list.
(Fri, 17 Apr 2020 23:42:03 GMT) (full text, mbox, link).
Message #10 received at 958027@bugs.debian.org (full text, mbox, reply):
[Message part 1 (text/plain, inline)]
On 4/17/20 10:02 AM, Moritz Muehlenhoff wrote:
> CVE-2020-11868 was assigned for NTP, does this also affect ntpsec in some way?
Thanks for letting me know. I don't feel qualified to answer that. That
said, the code there is very similar, so NTPsec might very well be affected.
I've forwarded this to security@ntpsec.org. We'll see what they say.
--
Richard
[signature.asc (application/pgp-signature, attachment)]
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Sat Apr 18 08:35:47 2020;
Machine Name:
buxtehude
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.