r4 - 2006-11-15 - 19:43:52 - TWikiContributorYou are here: NTP >  Main Web > WebChanges
NTP users are strongly urged to take immediate action to ensure that their NTP daemons are not susceptible to being used in distributed denial-of-service (DDoS) attacks. Please also take this opportunity to defeat denial-of-service attacks by implementing Ingress and Egress filtering through BCP38.

ntp-4.2.8p11 was released on 27 February 2018. It addresses 2 low-/medium-, 1 informational-/medium-, and 2 low-severity security issues in ntpd, 1 medium-severity security issue in ntpq, and provides over 65 non-security bugfixes and other improvements over 4.2.8p10.

Please see the NTP Security Notice for vulnerability and mitigation details.

Are you using Autokey in production? If so, please contact Harlan - he's got some questions for you.

100 Recent Changes in Main Web retrieved at 04:14 (GMT)

Statistics for nop Main Web Month: Topic views: Topic saves: File uploads: Most popular topic views: Top contributors for topic save and ...
Security Notice Notification Policy When we discover a security vulnerability in NTP we first notify Institutional members of the Consortium at Network Time Foundation ...
NTP Bug 3414 ntpq: decodearr() can write beyond its 'buf' limits (Medium) Date Resolved: 27 Feb 2018 References: 3414 / / http://www.kb.cert.org/vuls ...
NTP Bug 3454 Unauthenticated packet can reset authenticated interleaved association Date Resolved: Stable (4.2.8p11) 27 Feb 2018 References: 3454 / / ...
NTP Bug 3453 Interleaved symmetric mode cannot recover from bad state Date Resolved: Stable (4.2.8p11) 27 Feb 2018 References: 3453 / / http://www.kb ...
NTP Bug 3415 Provide a way to prevent authenticated symmetric passive peering Date Resolved: Stable (4.2.8p11) 27 Feb 2018 References: 3415 / / http: ...
NTP Bug 3412 ctl getitem(): buffer read overrun leads to undefined behavior and information leak (Info/Medium) Date Resolved: 27 Feb 2018 References: 3412 ...
Stable 4.2.8p11 2018/02/27
Current NTP Contributors .AndyShinton Jupiter Refclock Maintainer .BobDunlop ntpdc Maintainer .BradKnowles Postmaster, Listmaster, PGP Keymaster ...
NTP Bug 3376 NTP 01 001 NTP: Makefile does not enforce Security Flags (Informational) Date Resolved: 21 Mar 2017 References: 3376 Affects: All versions ...
NTP Bug 3361 0rigin DoS (Medium) Date Resolved: 21 Mar 2017 References: 3361 / / http://www.kb.cert.org/vuls/id/325339 VU#325339 Affects: ntp 4 ...
NTP Bug 3377 NTP 01 002 NTP: Buffer Overflow in ntpq when fetching reslist from a malicious ntpd (Medium) Date Resolved: 21 Mar 2017 References: 3377 ...
NTP Bug 3378 NTP 01 003 NTP: Improper use of snprintf() in mx4200 send() (Low) Date Resolved: 21 Mar 2017 References: 3378 / / http://www.kb.cert ...
NTP Bug 3379 NTP 01 004 NTP: Potential Overflows in ctl put() functions (Medium) Date Resolved: 21 Mar 2017 References: 3379 / / http://www.kb.cert ...
NTP Bug 3380 NTP 01 005 NTP: Off by one in Oncore GPS Receiver (Low) Date Resolved: 21 Mar 2017 References: 3380 Affects: All versions of NTP, up to ...
NTP Bug 3381 NTP 01 006 NTP: Copious amounts of Unused Code (Info) Date Resolved: 21 Mar 2017 References: 3381 Summary: The report says: Statically ...
NTP Bug 3382 NTP 01 007 NTP: Data Structure terminated insufficiently (WINDOWS installer ONLY) (Low) Date Resolved: 21 Mar 2017 References: 3382 / / http ...
NTP Bug 3383 NTP 01 008 NTP: Stack Buffer Overflow from Command Line (WINDOWS installer ONLY) (Low) Date Resolved: 21 Mar 2017 References: 3383 / / http ...
NTP Bug 3384 NTP 01 009 NTP: Privileged execution of User Library code (WINDOWS PPSAPI ONLY) (Low) Date Resolved: 21 Mar 2017 References: 3384 / / http ...
NTP Bug 3385 NTP 01 010 NTP: ereallocarray()/eallocarray() underused (Info) Date Resolved: 21 Mar 2017 References: 3385 Affects: All versions of NTP ...
NTP Bug 3386 NTP 01 011 NTP: ntpq stripquotes() returns incorrect value (Info) Date Resolved: 21 Mar 2017 References: 3386 Affects: All versions ...
NTP Bug 3387 NTP 01 012 NTP: Authenticated DoS via Malicious Config Option (Medium) Date Resolved: 21 Mar 2017 References: 3387 / / http://www.kb.cert ...
NTP Bug 3388 NTP 01 014 NTP: Buffer Overflow in DPTS Clock (Low) Date Resolved: 21 Mar 2017 References: 3388 / / http://www.kb.cert.org/vuls/id/325339 ...
NTP Bug 3389 NTP 01 016 NTP: Denial of Service via Malformed Config (Medium) Date Resolved: 21 Mar 2017 References: 3389 / / http://www.kb.cert.org/vuls ...
Network Time Foundation's NTP Support Wiki Providing public support services for Time Foundation's NTP Project and hosting the IETF NTP Working Group. Copyright for ...
NTP Bug 3119 Mode 6 unauthenticated trap information disclosure and DDoS vector Date Resolved: 21 Nov 2016 References: 3119 / / http://www.kb.cert.org ...
NTP Bug 3067 Fix for bug 2085 broke initial sync calculations Date Resolved: 21 Nov 2016 References: 3067 / / http://www.kb.cert.org/vuls/id/633847 VU ...
NTP Bug 3071 Client rate limiting and server responses Date Resolved: 21 Nov 2016 References: 3071 / / http://www.kb.cert.org/vuls/id/633847 VU#633847 ...
NTP Bug 3072 Attack on interface selection Date Resolved: 21 Nov 2016 References: 3072 / / http://www.kb.cert.org/vuls/id/633847 VU#633847 Affects ...
NTP Bug 3082 read mru list() does inadequate incoming packet checks Date Resolved: 21 Nov 2016 References: 3082 / / http://www.kb.cert.org/vuls/id/633847 ...
NTP Bug 3102 Zero Origin timestamp regression Date Resolved: 21 Nov 2016 References: 3102 / / http://www.kb.cert.org/vuls/id/633847 VU#633847 Affects ...
NTP Bug 3110 Windows: ntpd DoS by oversized UDP packet Date Resolved: 21 Nov 2016 References: 3110 / / http://www.kb.cert.org/vuls/id/633847 VU#633847 ...
NTP Bug 3113 Broadcast Mode Poll Interval Enforcement DoS Date Resolved: 21 Nov 2016 References: 3113 / / http://www.kb.cert.org/vuls/id/633847 VU#633847 ...
NTP Bug 3114 Broadcast Mode Replay Prevention DoS Date Resolved: 21 Nov 2016 References: 3114 / / http://www.kb.cert.org/vuls/id/633847 VU#633847 ...
NTP Bug 3118 Mode 6 unauthenticated trap information disclosure and DDoS vector Date Resolved: 21 Nov 2016 References: 3118 / / http://www.kb.cert.org ...
NTP Software Development New users should consult the documentation page before contacting the NTP development team with questions. Bugzilla Tracking of NTP bugs ...
Donating to the Project Donation Goals As the NTP Public Services Project's userbase has grown, the needs of the project, as well as a number of people who want ...
NTP Bug 3042 Broadcast interleave Date Resolved: 02 June 2016; Dev (4.3.93) 02 June 2016 References: 3042 / CVE 2016 4956 / VU#321640 Affects: ntp ...
NTP Bug 3043 Autokey association reset Date Resolved: 02 June 2016; Dev (4.3.93) 02 June 2016 References: 3043 / CVE 2016 4955 / VU#321640 Affects ...
NTP Bug 3044 Processing spoofed server packets Date Resolved: 02 June 2016; Dev (4.3.93) 02 June 2016 References: 3044 / CVE 2016 4954 / VU#321640 ...
NTP Bug 3045 Bad authentication demobilizes ephemeral associations Date Resolved: 02 June 2016; Dev (4.3.93) 02 June 2016 References: 3045 / CVE 2016 4953 ...
NTP Bug 3046 CRYPTO NAK crash Date Resolved: 02 June 2016; Dev (4.3.93) 02 June 2016 References: 3046 / CVE 2016 4957 / VU#321640 Affects: ntp 4.2 ...
NTP Bug 3020 Refclock impersonation vulnerability Date Resolved: Stable (4.2.8p7) 26 Apr 2016; Dev (4.3.92) 26 Apr 2016 References: 3020 / CVE 2016 1551 ...
NTP Bug 3011 Duplicate IPs on unconfig directives will cause an assertion botch in ntpd Date Resolved: Stable (4.2.8p7) 26 Apr 2016; Dev (4.3.92) 26 Apr 2016 ...
NTP Bug 3010 remote configuration trustedkey/requestkey/controlkey values are not properly validated Date Resolved: Stable (4.2.8p7) 26 Apr 2016; Dev (4.3.92 ...
NTP Bug 3009 Crafted addpeer with hmode 7 causes array wraparound with MATCH ASSOC Date Resolved: Stable (4.2.8p7) 26 Apr 2016; Dev (4.3.92) 26 Apr ...
NTP Bug 3008 ctl getitem() return value not always checked Date Resolved: Stable (4.2.8p7) 26 Apr 2016; Dev (4.3.92) 26 Apr 2016 References: 3008 / CVE ...
NTP Bug 2945 0rigin: Zero Origin Timestamp Bypass Date Resolved: Stable (4.2.8p6) 19 Jan 2016; Dev (4.3.90) 19 Jan 2016 References: 2945 / CVE 2015 8138 ...
NTP Bug 3007 CRYPTO NAK DoS Date Resolved: Stable (4.2.8p7) 26 Apr 2016; Dev (4.3.92) 26 Apr 2016 References: 3007 / CVE 2016 1547 / VU#718152 Affects ...
NTP Bug 2952 Original fix for NTP Bug 2901 broke peer associations Date Resolved: Stable (4.2.8p7) 26 Apr 2016; Dev (4.3.92) 26 Apr 2016 References: 2952 ...
NTP Bug 2879 Improve NTP security against buffer comparison timing attacks Date Resolved: Stable (4.2.8p7) 26 Apr 2016; Dev (4.3.92) 26 Apr 2016 References ...
NTP Bug 3012 Sybil vulnerability: ephemeral association attack Date Resolved: Stable (4.2.8p7) 26 Apr 2016; Dev (4.3.92) 26 Apr 2016 References: 3012 / ...
NTP Bug 2978 Interleave pivot Date Resolved: Stable (4.2.8p7) 26 Apr 2016; Dev (4.3.92) 26 Apr 2016 References: 2978 / CVE 2016 1548 / VU#718152 Affects ...
NTP Bug 2948 Potential Infinite Loop in ntpq Date Resolved: Stable (4.2.8p6) 19 Jan 2016; Dev (4.3.90) 19 Jan 2016 References: 2548 / CVE 2015 8158 ...
NTP Bug 2947 ntpq protocol vulnerable to replay attacks Date Resolved: Stable (4.2.8p7) XX Feb 2016; Dev (4.3.XX) XX Feb 2016 References: 2547 / CVE 2015 ...
NTP Bug 2946 Origin Leak: ntpq and ntpdc Disclose Origin Timestamp to Unauthenticated Clients Date Resolved: Stable (4.2.8p7) XX Feb 2016; Dev (4.3.XX) XX ...
NTP Bug 2935 Deja Vu: Replay attack on authenticated broadcast mode Date Resolved: Stable (4.2.8p6) 19 Jan 2016; Dev (4.3.90) 19 Jan 2016 References: 2935 ...
NTP Bug 2936 Skeleton Key: Any trusted key system can serve time Date Resolved: Stable (4.2.8p6) 19 Jan 2016; Dev (4.3.90) 19 Jan 2016 References: 2936 ...
NTP Bug 2937 nextvar() missing length check in ntpq Date Resolved: Stable (4.2.8p6) 19 Jan 2016; Dev (4.3.90) 19 Jan 2016 References: 2937 / CVE 2015 ...
NTP Bug 2938 ntpq saveconfig command allows dangerous characters in filenames Date Resolved: Stable (4.2.8p6) 19 Jan 2016; Dev (4.3.90) 19 Jan 2016 References ...
NTP Bug 2939 reslist NULL pointer dereference Date Resolved: Stable (4.2.8p6) 19 Jan 2016; Dev (4.3.90) 19 Jan 2016 References: 2939 / CVE 2015 7977 ...
NTP Bug 2940 Stack exhaustion in recursive traversal of restriction list Date Resolved: Stable (4.2.8p6) 19 Jan 2016; Dev (4.3.90) 19 Jan 2016 References ...
NTP Bug 2942 Off path Denial of Service (DoS) attack on authenticated broadcast mode Date Resolved: Stable (4.2.8p6) 19 Jan 2016; Dev (4.3.90) 19 Jan 2016 ...
NTP Bug 2956 Small step/big step Date Resolved: Stable (4.2.8p5) 07 Jan 2016; Dev (4.3.78) 07 Nov 2015 References: 2956 / CVE 2015 5300 Affects: All ...
Software Downloads Current versions of NTP Source Code Releases (tarballs) RSS Feed for releases of NTP The NTP Reference Implementation is Source Code Releases ...
NTP Bug 2941 NAK to the Future: Symmetric association authentication bypass via crypto NAK Date Resolved: Stable (4.2.8p4) 21 Oct 2015 References: 2941 ...
NTP Bug 2922 decodenetnum() will ASSERT botch instead of returning FAIL on some bogus values. Date Resolved: Stable (4.2.8p4) 21 Oct 2015 References: 2922 ...
NTP Bug 2921 TALOS CAN 0065: Password Length Memory Corruption Vulnerability Date Resolved: Stable (4.2.8p4) 21 Oct 2015 References: 2921 / CVE 2015 7854 ...
NTP Bug 2920 TALOS CAN 0064: Invalid length data provided by a custom refclock driver could cause a buffer overflow. Date Resolved: Stable (4.2.8p4) 21 Oct 2015 ...
NTP Bug 2919 TALOS CAN 0063: ntpq atoascii() potential memory corruption Date Resolved: Stable (4.2.8p4) 21 Oct 2015 References: 2919 / CVE 2015 7852 ...
NTP Bug 2918 TALOS CAN 0062: Potential path traversal vulnerability in the config file saving of ntpd on VMS. Date Resolved: Stable (4.2.8p4) 21 Oct 2015 ...
NTP Bug 2917 TALOS CAN 0055: Infinite loop if extended logging enabled and the logfile and keyfile are the same. Date Resolved: Stable (4.2.8p4) 21 Oct 2015 ...
NTP Bug 2916 TALOS CAN 0054: memory corruption in password store Date Resolved: Stable (4.2.8p4) 21 Oct 2015 References: 2916 / CVE 2015 7849 Affects ...
NTP Bug 2913 TALOS CAN 0052: mode 7 loop counter underrun Date Resolved: Stable (4.2.8p4) 21 Oct 2015 References: 2913 / CVE 2015 7848 Affects: All ...
NTP Bug 2909 Slow memory leak in CRYPTO ASSOC Date Resolved: Stable (4.2.8p4) 21 Oct 2015 References: 2909 / CVE 2015 7701 Affects: All ntp 4 releases ...
NTP Bug 2902 Configuration directives to change "pidfile" and "driftfile" should only be allowed locally. Date Resolved: Stable (4.2.8p4) 21 Oct 2015 References ...
NTP Bug 2901 Clients that receive a KoD should validate the origin timestamp field. Date Resolved: Stable (4.2.8p4) 21 Oct 2015 References: 2901 / / http ...
NTP Bug 2671 vallen is not validated in several places in ntp crypto.c , leading to a potential info leak or possibly crashing ntpd. References: 2671 / / ...
NTP Bug 2899 Incomplete autokey data packet length checks Incorrect patch for NtpBug2671 , in crypto xmit() . Missing length checks for autokey with GQ identity ...
NTP Bug 2382 Peer precision 31 gives division by zero Date Resolved: Development (4.2.7p367) 25 Apr 2013, Stable (4.2.8) 19 Dec 2014 References: 2382 ...
NTP Bug 1774 ntpd segfaults if cryptostats enabled when built without OpenSSL Date Resolved: Development (4.2.7p112) 18 Aug 2010, Stable (4.2.8) 19 Dec 2014 ...
NTP Bug 1593 ntpd abort in free() with logconfig syntax error Date Resolved: Development (4.2.7p42) 18 Aug 2010, Stable (4.2.8) 19 Dec 2014 References: ...
To subscribe, please add a bullet with your .WikiName in alphabetical order to this list: hackers #64;ntp.org: SoftwareDevelopment Related topics: .WebChangesAlert ...
Site level preferences are located in .TWikiPreferences , however this .TWikiPreferences prefs topic has override priority and should be used for local customisations ...
Release Numbering Scheme Related Topics: EmbeddedVersionStringContent, ReleaseNumberingSchemeDiscussion ntp 4.3.0 (new) Once ntp 4.2.8 has been released we will ...
Stable Release NEWS NTP 4.2.8 (Harlan Stenn, 2014/12/18) Focus: Security and Bug fixes, enhancements. Severity: HIGH In addition to bug fixes and enhancements, this ...
NTP Contact Information The primary sources of assistance for NTP users are the documentation, this site, the newsgroup and the FAQ. The development mailing lists ...
Please update your bookmarks The page you are attempting to view is now located at: " else " "}% Please click the link shown above to continue. You will not ...
Documentation Index The Official NTP documentation is distributed as HTML only. Manpages, or other forms of documentation, are maintained by third parties. General ...
Release Notifications and Information Notifications Notifications about new versions of NTP are available in the following ways: Service Stable Development ...
Our Donors These generous donors, and others not listed here, are supporting the NTP Public Service Project with their contributions (in reverse chronological order ...
Links NTP Ports Microsoft Windows NT / 2000 / XP / Windows .NET Server 2003 Maintained by .TerjeMathisen (terje.mathisen@hda.hydro.com) NT 4, Windows ...
nop Main Web Preferences The following settings are web preferences of the Main web. These preferences overwrite the site level preferences in ., and can be ...
Current Versions Of NTP Download Recent Donors Complete list Some web badges created using Kalsey's Button Maker
Donations Wanted The NTP Public Services Project relies on contributions from OurDonors to support our operations. Please see DonatingToTheProject for more information ...
Why BitKeeper? For many years, the NTP source code was kept in a frequently backed up directory on a machine. The only "snapshots" we had of previous releases were ...
TestTopicThree TestDiv
Tweet Current Versions Download RSS Recent Donors View the complete list Some web badges created using Kalsey's Button Maker
" warn "off"}% nop Contact Contributors Documentation Download Links Ports
Number of topics: 100

See also: rss-small RSS feed, recent changes with 50, 100, 200, 500, 1000 topics, all changes

Edit | WYSIWYG | Attach | Printable | Raw View | Backlinks: Web, All Webs | History: r4 < r3 < r2 < r1 | More topic actions
 
SSL security by CAcert
Get the CAcert Root Certificate
This site is powered by the TWiki collaboration platform
IPv6 Ready
Copyright & 1999-2018 by the contributing authors. All material on this collaboration platform is the property of the contributing authors. Ideas, requests, problems regarding the site? Send feedback