--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-3ffc890685
2021-06-26 01:00:34.124191
--------------------------------------------------------------------------------
Name : ntpsec
Product : Fedora 34
Version : 1.2.1
Release : 3.fc34
URL :
https://www.ntpsec.org/
Summary : NTP daemon and utilities
Description :
NTPsec is a more secure and improved implementation of the Network Time
Protocol derived from the original NTP project.
--------------------------------------------------------------------------------
Update Information:
Update to the latest upstream release, which fixes CVE-2021-22212 (ntpkeygen
generates weak keys). The ntpd daemon will refuse to start if a key impacted by
the ntpkeygen bug is detected in the key file. The key needs to be replaced with
a new key. A comment following a key in the key file needs to be separated by at
least one space or tab character to avoid the detection. The update also
enables support for hardware reference clocks.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jun 17 2021 Miroslav Lichvar <mlichvar(a)redhat.com> 1.2.1-3
- detect weak keys generated by ntpkeygen (#1955859)
* Mon Jun 7 2021 Python Maint <python-maint(a)redhat.com> - 1.2.1-2
- Rebuilt for Python 3.10
* Mon Jun 7 2021 Miroslav Lichvar <mlichvar(a)redhat.com> 1.2.1-1
- update to 1.2.1 (CVE-2021-22212)
- enable refclock support (#1955859)
- add libbsd-devel to build requirements
* Fri Jun 4 2021 Python Maint <python-maint(a)redhat.com> - 1.2.0-8
- Rebuilt for Python 3.10
* Tue Mar 2 2021 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> - 1.2.0-7
- Rebuilt for updated systemd-rpm-macros
See
https://pagure.io/fesco/issue/2583.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1955859 - CVE-2021-22212 ntpsec: ntpkeygen generates weak keys [fedora-34]
https://bugzilla.redhat.com/show_bug.cgi?id=1955859
[ 2 ] Bug #1968273 - ntpsec-1_2_1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1968273
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-3ffc890685' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------