From: Baruch Siach <baruch@tkos.co.il>
To: buildroot@busybox.net
Subject: [Buildroot] [PATCH 5/5] ntp: bump to version 4.2.8p9
Date: Mon, 6 Feb 2017 16:04:33 +0200 [thread overview]
Message-ID: <20170206140433.uffglljnxtisy7le@tarshish> (raw)
In-Reply-To: <20170206140012.1029-5-aduskett@codeblue.com>
Hi Adam,
On Mon, Feb 06, 2017 at 09:00:12AM -0500, Adam Duskett wrote:
> This version of ntp fixes several vulnerabilities.
Subject should mention that this is a security bump.
> CVE-2016-9311
> CVE-2016-9310
> CVE-2016-7427
> CVE-2016-7428
> CVE-2016-9312
> CVE-2016-7431
> CVE-2016-7434
> CVE-2016-7429
> CVE-2016-7426
> CVE-2016-7433
>
> http://www.kb.cert.org/vuls/id/633847
>
> In addition, libssl_compat.h is now included in many files, which
> references openssl/evp.h, openssl/dsa.h, and openssl/rsa.h.
> Even if a you pass --disable-ssl as a configuration option, these
> files are now required.
>
> As such, I have also added openssl as a dependency, and it is now
> automatically selected when you select ntp.
>
> Signed-off-by: Adam Duskett <aduskett@codeblue.com>
[snip]
> @@ -23,7 +23,6 @@ NTP_AUTORECONF = YES
>
> ifeq ($(BR2_PACKAGE_OPENSSL),y)
BR2_PACKAGE_OPENSSL is now always enabled, so there is no need to check if
it's enabled.
> NTP_CONF_OPTS += --with-crypto
> -NTP_DEPENDENCIES += openssl
> else
> NTP_CONF_OPTS += --without-crypto --disable-openssl-random
> endif
baruch
--
http://baruch.siach.name/blog/ ~. .~ Tk Open Systems
=}------------------------------------------------ooO--U--Ooo------------{=
- baruch at tkos.co.il - tel: +972.52.368.4656, http://www.tkos.co.il -
next prev parent reply other threads:[~2017-02-06 14:04 UTC|newest]
Thread overview: 7+ messages / expand[flat|nested] mbox.gz Atom feed top
2017-02-06 14:00 [Buildroot] [PATCH 1/5] linux-firmware: bump to version 6d3bc8886517d171068fd1263176b8b5c51df204 Adam Duskett
2017-02-06 14:00 ` [Buildroot] [PATCH 2/5] nginx-naxsi: bump to version 0.55.2 Adam Duskett
2017-02-06 14:00 ` [Buildroot] [PATCH 3/5] x264: bump to version 97eaef2ab82a46d13ea5e00270712d6475fbe42b Adam Duskett
2017-02-06 14:00 ` [Buildroot] [PATCH 4/5] pps-tools: " Adam Duskett
2017-02-06 14:00 ` [Buildroot] [PATCH 5/5] ntp: bump to version 4.2.8p9 Adam Duskett
2017-02-06 14:04 ` Baruch Siach [this message]
2017-02-06 14:53 ` [Buildroot] [PATCH 1/5] linux-firmware: bump to version 6d3bc8886517d171068fd1263176b8b5c51df204 Thomas Petazzoni
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20170206140433.uffglljnxtisy7le@tarshish \
--to=baruch@tkos.co.il \
--cc=buildroot@busybox.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox