BSDSec

deadsimple BSD Security Advisories and Announcements

OpenNTPD 5.7p3 released

28 January, 2015 by busterb@gmail.com | openbsd 

OpenNTPD 5.7p3 has just been released. It will be available from the mirrors
listed at http://www.openntpd.org/ shortly.

OpenNTPD is a FREE, secure, and easy to use implementation of the Network Time
Protocol. It provides the ability to sync the local clock to remote NTP servers
and can act as NTP server itself, redistributing the local clock. 

Because it uses isolated, unprivileged processes for DNS and NTP operations,
OpenNTPD is especially well-hardened against bugs such as CVE-2015-0235.  

Changes since OpenNTPD 5.7p2
============================
 * Fixed issue resolving hostnames when the network is initially unavailable.
 * Fixed process name logging on Linux and OS X.
 * Fixed adjfreq failures on Solaris due to uninitialized struct timex.
 * Support building on Linux musl libc.
 * Default suggested privilege separation directory changed from /var/empty/ntp
   to /var/empty. This directory may be in a different location, depending on
   your operating system's packaging scheme. Please ensure that that the ntp
   user's home directory is empty, owned by root, and has no write privileges
   for other users.

Changes since OpenNTPD 5.7p1
============================
 * Switched the drift file from an unscaled frequency offset to ppm.
   The latter format is compatible with the NTP daemon from ntp.org.
   No forward migration steps are necessary.
 * Fixed a memory leak in DNS handler.
 * Added support for setting the process title on Linux and OS X.
 * Added NetBSD support.

For detailed changes, see the changes either in the OpenBSD CVS repository or
the GitHub mirror.

Checksums:
==========

SHA1 (openntpd-5.7p3.tar.gz) = 02ad9ae80f2dfd6cfbcc642d35f73093d167a067
SHA256 (openntpd-5.7p3.tar.gz) = 4f417c8a4c21ed7ec3811107829f931404f9bf121855b8571a2ca3355695343a

Reporting Bugs:
===============

General bugs may be reported to tech@openbsd.org

Portable bugs may be filed at https://github.com/openntpd-portable/openntpd-portable/

Thanks to all of the contributors so far who have helped with this project.