Update to ntp-4.2.8, fixes for several CVEs.

- Weak default key in config_auth() - CVE-2014-9293 - non-cryptographic random number generator with weak seed used by ntp-keygen to generate symmetric keys - CVE-2014-9294 - Buffer overflow in crypto_recv() - CVE-2014-9295 - Buffer overflow in ctl_putdata() - CVE-2014-9295 - Buffer overflow in configure() - CVE-2014-9295 - receive(): missing return on error - CVE-2014-9296 ok naddy@
2014-12-24 13:10:20 +00:00 · 2014-12-24 13:10:20 +00:00 · dcbb7fb25c
commit dcbb7fb25c
parent ac4f60b54d
3 changed files with 18 additions and 14 deletions
--- a/net/ntp/Makefile
+++ b/net/ntp/Makefile
@ -1,4 +1,4 @@
-# $OpenBSD: Makefile,v 1.59 2014/02/09 21:36:46 sthen Exp $
+# $OpenBSD: Makefile,v 1.60 2014/12/24 13:10:20 jca Exp $

 COMMENT=	Network Time Protocol reference implementation

@ -6,26 +6,24 @@ COMMENT=	Network Time Protocol reference implementation
 # to confuse with the ports system's 'pN' convention, so we
 # convert it to 'pl' for local use.

-VERSION=	4.2.7p418
-DISTNAME=	ntp-dev-${VERSION}
+VERSION=	4.2.8
+DISTNAME=	ntp-${VERSION}
 PKGNAME=	ntp-${VERSION:S/p/pl/}
 CATEGORIES=	net
-MASTER_SITES=	http://archive.ntp.org/ntp4/ntp-dev/
+MASTER_SITES=	http://archive.ntp.org/ntp4/ntp-4.2/

 HOMEPAGE=	http://www.ntp.org/

 # modified ISC
 PERMIT_PACKAGE_CDROM=	Yes

-WANTLIB += c crypto edit event_core event_extra event_pthreads
+WANTLIB += c crypto edit event_core event_pthreads
 WANTLIB += m pthread ssl termcap

 # enabling SEPARATE_BUILD causes the parser to be rebuilt .y -> .c,
 # which requires bison

 CONFIGURE_STYLE=  gnu
-AUTOCONF_VERSION= 2.68
-AUTOMAKE_VERSION= 1.11

 CONFIGURE_ARGS=	--docdir=${TRUEPREFIX}/share/doc/ntp \
 		--enable-parse-clocks \
@ -34,14 +32,9 @@ CONFIGURE_ARGS=	--docdir=${TRUEPREFIX}/share/doc/ntp \
 CONFIGURE_ENV=	CPPFLAGS='-DCONFIG_FILE="\"${SYSCONFDIR}/ntp.conf\"" \
 			  -DKEYFILE="\"${SYSCONFDIR}/ntp.keys\""'

-BUILD_DEPENDS=	${MODGNU_AUTOCONF_DEPENDS} \
-		${MODGNU_AUTOMAKE_DEPENDS} \
-		devel/libtool
 LIB_DEPENDS=	devel/libevent2

 post-patch:
-	cd ${WRKSRC}; AUTOCONF_VERSION=${AUTOCONF_VERSION} \
-	    AUTOMAKE_VERSION=${AUTOMAKE_VERSION} ./bootstrap
 	cp ${WRKSRC}/sntp/loc/freebsd ${WRKSRC}/sntp/loc/openbsd

 post-install:
--- a/net/ntp/distinfo
+++ b/net/ntp/distinfo
@ -1,2 +1,2 @@
-SHA256 (ntp-dev-4.2.7p418.tar.gz) = XU7/9TxSsM4e7i+ozM444T456p20RZFEQSspgmzZPBo=
-SIZE (ntp-dev-4.2.7p418.tar.gz) = 6361805
+SHA256 (ntp-4.2.8.tar.gz) = LpIN+LalpBBWenN2f6RYwAx/Cs7DIT5p7QE0QUpQ2O4=
+SIZE (ntp-4.2.8.tar.gz) = 6750364
--- a/net/ntp/patches/patch-libparse_info_trimble_c
+++ b/net/ntp/patches/patch-libparse_info_trimble_c
@ -0,0 +1,11 @@
+$OpenBSD: patch-libparse_info_trimble_c,v 1.1 2014/12/24 13:10:20 jca Exp $
+--- libparse/info_trimble.c.orig	Mon Dec 22 20:25:32 2014
+++ libparse/info_trimble.c	Mon Dec 22 20:25:49 2014
+@@ -2,6 +2,7 @@
+  * Automatically generated - do not modify
+  */
+ 
+#include <config.h>
+ #include "ntp_types.h"
+ #include "ntpd.h"
+ #include "trimble.h"