[SECURITY] Fedora 28 Update: ntp-4.2.8p13-1.fc28

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2019-694e3aa4e8 2019-04-07 01:47:03.754853 -------------------------------------------------------------------------------- Name : ntp Product : Fedora 28 Version : 4.2.8p13 Release : 1.fc28 URL : http://www.ntp.org Summary : The NTP daemon and utilities Description : The Network Time Protocol (NTP) is used to synchronize a computer's time with another reference time source. This package includes ntpd (a daemon which continuously adjusts system time) and utilities used to query and configure the ntpd daemon. Perl scripts are in the ntp-perl package, ntpdate is in the ntpdate package and sntp is in the sntp package. The documentation in HTML format is in the ntp-doc package. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2019-8936 -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 7 2019 Miroslav Lichvar <mlichvar(a)redhat.com&gt; 4.2.8p13-1 - update to 4.2.8p13 (CVE-2019-8936) * Fri Feb 1 2019 Fedora Release Engineering <releng(a)fedoraproject.org&gt; - 4.2.8p12-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild * Wed Aug 15 2018 Miroslav Lichvar <mlichvar(a)redhat.com&gt; 4.2.8p12-1 - update to 4.2.8p12 (CVE-2018-12327 CVE-2018-7170) * Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org&gt; - 4.2.8p11-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1686605 - CVE-2019-8936 ntp: Crafted null dereference attack in authenticated mode 6 packet https://bugzilla.redhat.com/show_bug.cgi?id=1686605 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-694e3aa4e8' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------