Merge psp-deb1.ntp.org:/home/stenn/ntp-stable-p10

author Harlan Stenn <stenn@ntp.org>

Wed, 1 Mar 2017 07:36:07 +0000 (07:36 +0000)

committer Harlan Stenn <stenn@ntp.org>

Wed, 1 Mar 2017 07:36:07 +0000 (07:36 +0000)
author Harlan Stenn <stenn@ntp.org>
Wed, 1 Mar 2017 07:36:07 +0000 (07:36 +0000)
committer Harlan Stenn <stenn@ntp.org>
Wed, 1 Mar 2017 07:36:07 +0000 (07:36 +0000)
diff --cc ChangeLog

index 53ebd1835be75a1bbbcb232d179a2d58862a109b,aa666199b28adf49a28b5191944c9ecb1ba6fd58..2771c7443969bf4171e981187ed46579e546443c
--- 1/ChangeLog
--- 2/ChangeLog
+++ b/ChangeLog
@@@ -1,7 -1,19 +1,20 @@@
   ---
   (4.2.8p10)
   
+ +* [Sec 3385] NTP-01-010 NTP: ereallocarray()/eallocarray() underused. HStenn
+ * [Sec 3383] NTP-01-008: Stack Buffer Overflow from Command Line
+   (Pentest report 01.2017) <perlinger@ntp.org>
+ * [Sec 3382] NTP-01-007: Data Structure terminated insufficiently
+   (Pentest report 01.2017) <perlinger@ntp.org>
+ * [Sec 3380] NTP-01-005: Off-by-one in Oncore GPS Receiver
+   (Pentest report 01.2017) <perlinger@ntp.org>
+ * [Sec 3379] NTP-01-004 Potential Overflows in ctl_put() functions
+   (Pentest report 01.2017) <perlinger@ntp.org>
+ * [Sec 3378] NTP-01-003 Improper use of snprintf() in mx4200_send()
+   (Pentest report 01.2017) <perlinger@ntp.org>
+ * [Sec 3377] NTP-01-002 Buffer Overflow in ntpq when fetching reslist
+   (Pentest report 01.2017) <perlinger@ntp.org
+ * [Sec 3361] 0rigin (zero origin) DoS.  HStenn.
   * [Bug 3363] Support for openssl-1.1.0 without compatibility modes
     - rework of patch set from <ntp.org@eroen.eu>. <perlinger@ntp.org>
   * [Bug 3356] Bugfix 3072 breaks multicastclient <perlinger@ntp.org>
author	Harlan Stenn <stenn@ntp.org>
	Wed, 1 Mar 2017 07:36:07 +0000 (07:36 +0000)
committer	Harlan Stenn <stenn@ntp.org>
	Wed, 1 Mar 2017 07:36:07 +0000 (07:36 +0000)