- Issued:
- 2011-11-16
- Updated:
- 2011-11-16
RHBA-2011:1454 - ntp bug fix update
Synopsis
ntp bug fix update
Type/Severity
Bug Fix Advisory
Topic
An updated ntp package that fixes one bug is now available for Red Hat Enterprise Linux 5.
Description
The Network Time Protocol (NTP) is used to synchronize a computer's time with another referenced time source. This package includes the ntpd daemon which continuously adjusts system time and utilities used to query and configure the ntpd daemon.
This update fixes the following bug:
- The ntp-keygen utility always used the DES-CBC (Data Encryption Standard-Cipher Block Chaining) encryption algorithm to encrypt private NTP keys. This algorithm is not supported in FIPS (Federal Information Processing Standard) mode. As a consequence, ntp-keygen generated empty private keys when it was used on systems with FIPS mode enabled. To solve this problem, a new "-C" option has been added for ntp-keygen that allows for selection of an encryption algorithm for private key files. Private NTP keys are now generated as expected on systems with FIPS mode enabled. (BZ#449750)
All users of ntp are advised to upgrade to this updated package, which fixes this bug.
Solution
Before applying this update, make sure all previously-released errata relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at This content is not included.https://access.redhat.com/kb/docs/DOC-11259
Affected Products
| Product | Version | Arch |
|---|---|---|
| Red Hat Enterprise Linux for Power, big endian | 5 | ppc |
| Red Hat Enterprise Linux for IBM z Systems | 5 | s390x |
| Red Hat Enterprise Linux Workstation | 5 | x86_64 |
| Red Hat Enterprise Linux Workstation | 5 | i386 |
| Red Hat Enterprise Linux Server | 5 | x86_64 |
| Red Hat Enterprise Linux Server | 5 | ia64 |
| Red Hat Enterprise Linux Server | 5 | i386 |
| Red Hat Enterprise Linux Server from RHUI | 5 | x86_64 |
| Red Hat Enterprise Linux Server from RHUI | 5 | i386 |
| Red Hat Enterprise Linux Desktop | 5 | x86_64 |
| Red Hat Enterprise Linux Desktop | 5 | i386 |
Updated Packages
- ntp-4.2.2p1-15.el5_7.1.ia64.rpm
- ntp-4.2.2p1-15.el5_7.1.x86_64.rpm
- ntp-4.2.2p1-15.el5_7.1.i386.rpm
- ntp-4.2.2p1-15.el5_7.1.src.rpm
- ntp-4.2.2p1-15.el5_7.1.ppc.rpm
- ntp-4.2.2p1-15.el5_7.1.s390x.rpm
Fixes
(none)
CVEs
(none)
References
(none)
Additional information
- The Red Hat security contact is This content is not included.secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
- Offline Security Data data is available for integration with other systems. See Offline Security Data API to get started.