4.2.8p12 Release Announcement
Last update: June 28, 2022 21:06 UTC (1f97faf40)
The NTP Project at Network Time Foundation publicly released ntp-4.2.8p13 on Tuesday, 14 August 2018.
This release improves on one security issue in ntpd
:
- LOW/MEDIUM: 3012: Sybil vulnerability: ephemeral association attack
- While fixed in ntp-4.2.8p7 and with significant additional protections for this issue in 4.2.8p11, ntp-4.2.8p12 includes a fix for an edge case in the new noepeer support.
- Originally reported by Matt Van Gundy of Cisco. Edge-case hole reported by Martin Burnicki of Meinberg.
one security issue in ntpq
and ntpdc
:
and provides 27 bugfixes and 4 other improvements.
ENotification of these issues were delivered to our Institutional members on a rolling basis as they were reported and as progress was made.
Timeline: