From: Harlan Stenn <stenn@ntp.org>
Date: Tue, 7 Apr 2015 07:57:32 +0000 (+0000)
Subject: NEWS update
X-Git-Tag: NTP_4_2_8P2~2
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=6b7ed1dad25745d32af6ed5749a7d9e5591e7588;p=thirdparty%2Fntp.git

NEWS update

bk: 55238decVIEZrb81wFe8acZyLHacqg
---

diff --git a/NEWS b/NEWS
index 9ce70d377..a425a9a4d 100644
--- a/NEWS
+++ b/NEWS
@@ -3,10 +3,10 @@ NTP 4.2.8p2 (Harlan Stenn <stenn@ntp.org>, 2015/04/xx)
 
 Focus: Security and Bug fixes, enhancements.
 
-Severity: HIGH
+Severity: MEDIUM
  
 In addition to bug fixes and enhancements, this release fixes the
-following high-severity vulnerabilities involving private key
+following medium-severity vulnerabilities involving private key
 authentication:
 
 * [Sec 2779] ntpd accepts unauthenticated packets with symmetric key crypto.
@@ -90,6 +90,8 @@ It requires the following commands in order to work:
 
 Some may choose to run this from cron.  It needs more portability testing.
 
+Bug Fixes and Improvements:
+
 * [Bug 1787] DCF77's formerly "antenna" bit is "call bit" since 2003.
 * [Bug 1960] setsockopt IPV6_MULTICAST_IF: Invalid argument.
 * [Bug 2346] "graceful termination" signals do not do peer cleanup.