Oracle alert ELSA-2020-2663 (ntp)

From:
               Errata Announcements for Oracle Linux <el-errata@oss.oracle.com> 
To:
               el-errata@oss.oracle.com 
Subject:
               [El-errata] ELSA-2020-2663 Moderate: Oracle Linux 7 ntp security	update (aarch64) 
Date:
               Wed, 24 Jun 2020 08:39:52 -0700
Message-ID:
               <cad83c47-db8b-f8e6-df49-ae863c63f7ea@oracle.com>
Oracle Linux Security Advisory ELSA-2020-2663

http://linux.oracle.com/errata/ELSA-2020-2663.html

The following updated rpms for Oracle Linux 7 have been uploaded to the 
Unbreakable Linux Network:

aarch64:
ntp-4.2.6p5-29.0.1.el7_8.2.aarch64.rpm
ntpdate-4.2.6p5-29.0.1.el7_8.2.aarch64.rpm
ntp-doc-4.2.6p5-29.0.1.el7_8.2.noarch.rpm
ntp-perl-4.2.6p5-29.0.1.el7_8.2.noarch.rpm
sntp-4.2.6p5-29.0.1.el7_8.2.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/ntp-4.2.6p5-29.0....

Description of changes:

[4.2.6p5-29.0.1]
- Bump release to avoid ULN conflict with Oracle modified errata.

[4.2.6p5-29.el7_8.2]
- don't update transmission time on invalid response (CVE-2020-11868)
- randomize transmit timestamp in client requests (CVE-?, #1813787)

_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata

From:		Errata Announcements for Oracle Linux <el-errata@oss.oracle.com>
To:		el-errata@oss.oracle.com
Subject:		[El-errata] ELSA-2020-2663 Moderate: Oracle Linux 7 ntp security update (aarch64)
Date:		Wed, 24 Jun 2020 08:39:52 -0700
Message-ID:		<cad83c47-db8b-f8e6-df49-ae863c63f7ea@oracle.com>