Oracle alert ELSA-2015-1459 (ntp)

From:
    	       Errata Announcements for Oracle Linux <el-errata@oss.oracle.com> 
To:
    	       el-errata@oss.oracle.com 
Subject:
    	       [El-errata] ELSA-2015-1459 Moderate: Oracle Linux 6 ntp security, bug fix, and enhancement update 
Date:
    	       Wed, 29 Jul 2015 09:38:59 -0700
Message-ID:
    	       <55B901A3.7020407@oracle.com>
Oracle Linux Security Advisory ELSA-2015-1459

http://linux.oracle.com/errata/ELSA-2015-1459.html

The following updated rpms for Oracle Linux 6 have been uploaded to the 
Unbreakable Linux Network:

i386:
ntp-4.2.6p5-5.el6.i686.rpm
ntp-doc-4.2.6p5-5.el6.noarch.rpm
ntp-perl-4.2.6p5-5.el6.i686.rpm
ntpdate-4.2.6p5-5.el6.i686.rpm

x86_64:
ntp-4.2.6p5-5.el6.x86_64.rpm
ntp-doc-4.2.6p5-5.el6.noarch.rpm
ntp-perl-4.2.6p5-5.el6.x86_64.rpm
ntpdate-4.2.6p5-5.el6.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/ntp-4.2.6p5-5.el6...

Description of changes:

[4.2.6p5-5]
- reject packets without MAC when authentication is enabled (CVE-2015-1798)
- protect symmetric associations with symmetric key against DoS attack
   (CVE-2015-1799)
- fix generation of MD5 keys with ntp-keygen on big-endian systems
   (CVE-2015-3405)
- log when stepping clock for leap second or ignoring it with -x (#1204625)

[4.2.6p5-4]
- fix typos in ntpd man page (#1194463)

_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata

From:		Errata Announcements for Oracle Linux <el-errata@oss.oracle.com>
To:		el-errata@oss.oracle.com
Subject:		[El-errata] ELSA-2015-1459 Moderate: Oracle Linux 6 ntp security, bug fix, and enhancement update
Date:		Wed, 29 Jul 2015 09:38:59 -0700
Message-ID:		<55B901A3.7020407@oracle.com>