This is a security bug and needs a point release and a CVE. On Tue, Oct 29, 2019, 05:06 Hal Murray via devel <devel@ntpsec.org> wrote:
> > Announcement below. > > It triggered a bug. When copying the hostname out of the NTS-KE server > response, I forgot to add a NUL. I assume we tested that code. I guess > we > were lucky. > > I just pushed a fix. > > -------- > > Subject: [Ntp] NTS enabled NTP service up and running at Netnod > From: Patrik Fältström <paf=40frobbit...@dmarc.ietf.org> > Date: Tue, 29 Oct 2019 06:28:41 +0100 > To: n...@ietf.org > > Hi, > > This is slightly off topic for the IETF WG, but as people that are implem= > enting NTS enabled NTP is hanging around here, I want to send a notice th= > at we at Netnod have launched an NTS enabled NTP service. > > <https://www.netnod.se/time-and-frequency/netnod-launch-one-of-the-first-= > nts-enabled-time-services-in-the-world > <https://www.netnod.se/time-and-frequency/netnod-launch-one-of-the-first-=nts-enabled-time-services-in-the-world> > > > > We are very happy to have reached this far. > > Instrumental people for this are the ones you all know: Christer, Ragge, = > Marcus and MC. To be added are all friends that have participated in the = > hackatons on the client side. Specifically Daniel Lublin and Martin Samue= > lsson. > > And you in this group that have worked together to get the NTS specificat= > ion this far down the road. Now we "just" have a few steps to go. > > Regards, Patrik > > > -- > These are my opinions. I hate spam. > > > > _______________________________________________ > devel mailing list > devel@ntpsec.org > http://lists.ntpsec.org/mailman/listinfo/devel >
_______________________________________________ devel mailing list devel@ntpsec.org http://lists.ntpsec.org/mailman/listinfo/devel
