Fedora Linux 8777 Published by

A linuxptp security update has been released for Fedora 33.



SECURITY: Fedora 33 Update: linuxptp-3.1.1-1.fc33


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-a5b584004c
2021-07-16 01:05:10.038484
--------------------------------------------------------------------------------

Name : linuxptp
Product : Fedora 33
Version : 3.1.1
Release : 1.fc33
URL :   http://linuxptp.sourceforge.net/
Summary : PTP implementation for Linux
Description :
This software is an implementation of the Precision Time Protocol (PTP)
according to IEEE standard 1588 for Linux. The dual design goals are to provide
a robust implementation of the standard and to use the most relevant and modern
Application Programming Interfaces (API) offered by the Linux kernel.
Supporting legacy APIs and other platforms is not a goal.

--------------------------------------------------------------------------------
Update Information:

Security fixes for CVE-2021-3570 and CVE-2021-3571.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jul 7 2021 Miroslav Lichvar 3.1.1-1
- update to 3.1.1 (CVE-2021-3570, CVE-2021-3571)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #1966240 - CVE-2021-3570 linuxptp: missing length check of forwarded messages
  https://bugzilla.redhat.com/show_bug.cgi?id=1966240
[ 2 ] Bug #1966241 - CVE-2021-3571 linuxptp: wrong length of one-step follow-up in transparent clock
  https://bugzilla.redhat.com/show_bug.cgi?id=1966241
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-a5b584004c' at the command
line. For more information, refer to the dnf documentation available at
  http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
  https://fedoraproject.org/keys