Merge bk://bk.ntp.org/ntp-dev

author Harlan Stenn <stenn@ntp.org>

Thu, 18 Dec 2014 10:06:22 +0000 (10:06 +0000)

committer Harlan Stenn <stenn@ntp.org>

Thu, 18 Dec 2014 10:06:22 +0000 (10:06 +0000)
author Harlan Stenn <stenn@ntp.org>
Thu, 18 Dec 2014 10:06:22 +0000 (10:06 +0000)
committer Harlan Stenn <stenn@ntp.org>
Thu, 18 Dec 2014 10:06:22 +0000 (10:06 +0000)
diff --cc ChangeLog

index ef9ccdb90608036f7ddcd38cbc0a20bb611cfb27,a6680c32ed539a1949916186e55515c3cfd91db0..3e4b51827742397f66d5c8e4dadff9bb4a581add
--- 1/ChangeLog
--- 2/ChangeLog
+++ b/ChangeLog
@@@ -1,9 -1,4 +1,10 @@@
+ +* [Sec 2666] Use cryptographic random numbers for md5 key generation.
+ +* [Sec 2667] buffer overflow in crypto_recv().
+ +* [Sec 2668] buffer overflow in ctl_putdata().
+ +* [Sec 2669] buffer overflow in configure().
+ +* [Sec 2670] Missing return; from error clause.
+ +* [Sec 2672] On some OSes ::1 can be spoofed, bypassing source IP ACLs.
+ (4.2.7p486-RC) 2014/12/18 Released by Harlan Stenn <stenn@ntp.org>
   * [Bug 2687] RefClock 26/hpgps doesn't work at default line speed
   (4.2.7p485-RC) 2014/12/12 Released by Harlan Stenn <stenn@ntp.org>
   * [Bug 2686] refclock_gpsdjson needs strtoll(), which is not always present.
author	Harlan Stenn <stenn@ntp.org>
	Thu, 18 Dec 2014 10:06:22 +0000 (10:06 +0000)
committer	Harlan Stenn <stenn@ntp.org>
	Thu, 18 Dec 2014 10:06:22 +0000 (10:06 +0000)