|
@@ -4,7 +4,7 @@ Summary: Synchronizes system time using the Network Time Protocol (NTP).
|
|
|
Summary(ja): Network Time Protocol (NTP) を用いたシステム時刻の同期
|
|
|
Name: ntp
|
|
|
Version: 4.2.6p5
|
|
|
-Release: 3%{?_dist_release}
|
|
|
+Release: 4%{?_dist_release}
|
|
|
License: distributable
|
|
|
Group: System Environment/Daemons
|
|
|
URL: http://www.ntp.org/
|
|
@@ -77,6 +77,8 @@ Patch100: ntp-4.2.6p5-cve-2014-9293.patch
|
|
|
Patch110: ntp-4.2.6p5-cve-2014-9294.patch
|
|
|
Patch120: ntp-4.2.6p3_CVE-2014-9295.patch
|
|
|
Patch130: ntp-4.2.6p3_CVE-2014-9296.patch
|
|
|
+Patch140: ntp-4.2.6p3-CVE-2014-9297.patch
|
|
|
+Patch150: ntp-4.2.6p5-CVE-2014-9298.patch
|
|
|
|
|
|
Requires(pre): /sbin/chkconfig
|
|
|
# PreReq: /sbin/chkconfig
|
|
@@ -156,11 +158,12 @@ sed -i 's|/var/db/ntp-kod|%{_localstatedir}/lib/ntp/sntp-kod|' sntp/{sntp.1,main
|
|
|
%patch60 -p0 -b .NANO
|
|
|
|
|
|
# security
|
|
|
-# %patch100 -p1 -b .CVE-2009-0159
|
|
|
%patch100 -p1 -b .cve-2014-9293
|
|
|
%patch110 -p1 -b .cve-2014-9294
|
|
|
%patch120 -p1 -b .CVE-2014-9295
|
|
|
%patch130 -p1 -b .CVE-2014-9296
|
|
|
+%patch140 -p1 -b .CVE-2014-9297
|
|
|
+%patch150 -p1 -b .CVE-2014-9298
|
|
|
|
|
|
%build
|
|
|
# autoconf
|
|
@@ -272,6 +275,13 @@ fi
|
|
|
%{_mandir}/man8/ntptrace.8*
|
|
|
|
|
|
%changelog
|
|
|
+* Fri Feb 27 2015 Ryoichi INAGAKI <ryo1@toki.waseda.jp> 4.2.6p5-4
|
|
|
+- added patch140 and 150 from Vine Linux/6
|
|
|
+ * Mon Feb 9 2015 Satoshi IWAMOTO <satoshi.iwamoto@nifty.ne.jp> 4.2.6p3-5
|
|
|
+ - add patch140 for fix CVE-2014-9297 (length value in extension fields)
|
|
|
+ - add patch150 for fix CVE-2014-9298 (bypass ACLs based on IPv6)
|
|
|
+ these patches based from debian wheezy, thanks.
|
|
|
+
|
|
|
* Fri Feb 6 2015 Ryoichi INAGAKI <ryo1@toki.waseda.jp> 4.2.6p5-3
|
|
|
- added patch100-130 from Vine Linux/6
|
|
|
* Sun Dec 21 2014 Satoshi IWAMOTO <satoshi.iwamoto@nifty.ne.jp> 4.2.6p3-4
|