[SECURITY] Fedora 34 Update: ntpsec-1.2.1-3.fc34

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2021-3ffc890685 2021-06-26 01:00:34.124191 -------------------------------------------------------------------------------- Name : ntpsec Product : Fedora 34 Version : 1.2.1 Release : 3.fc34 URL : https://www.ntpsec.org/ Summary : NTP daemon and utilities Description : NTPsec is a more secure and improved implementation of the Network Time Protocol derived from the original NTP project. -------------------------------------------------------------------------------- Update Information: Update to the latest upstream release, which fixes CVE-2021-22212 (ntpkeygen generates weak keys). The ntpd daemon will refuse to start if a key impacted by the ntpkeygen bug is detected in the key file. The key needs to be replaced with a new key. A comment following a key in the key file needs to be separated by at least one space or tab character to avoid the detection. The update also enables support for hardware reference clocks. -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 17 2021 Miroslav Lichvar <mlichvar(a)redhat.com&gt; 1.2.1-3 - detect weak keys generated by ntpkeygen (#1955859) * Mon Jun 7 2021 Python Maint <python-maint(a)redhat.com&gt; - 1.2.1-2 - Rebuilt for Python 3.10 * Mon Jun 7 2021 Miroslav Lichvar <mlichvar(a)redhat.com&gt; 1.2.1-1 - update to 1.2.1 (CVE-2021-22212) - enable refclock support (#1955859) - add libbsd-devel to build requirements * Fri Jun 4 2021 Python Maint <python-maint(a)redhat.com&gt; - 1.2.0-8 - Rebuilt for Python 3.10 * Tue Mar 2 2021 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl&gt; - 1.2.0-7 - Rebuilt for updated systemd-rpm-macros See https://pagure.io/fesco/issue/2583. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1955859 - CVE-2021-22212 ntpsec: ntpkeygen generates weak keys [fedora-34] https://bugzilla.redhat.com/show_bug.cgi?id=1955859 [ 2 ] Bug #1968273 - ntpsec-1_2_1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1968273 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-3ffc890685' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------