Blame SOURCES/ntp-4.2.6p5-cve-2016-1550.patch

72fc97
diff -up ntp-4.2.6p5/libntp/a_md5encrypt.c.cve-2016-1550 ntp-4.2.6p5/libntp/a_md5encrypt.c
72fc97
--- ntp-4.2.6p5/libntp/a_md5encrypt.c.cve-2016-1550	2016-04-27 15:11:40.955168086 +0200
72fc97
+++ ntp-4.2.6p5/libntp/a_md5encrypt.c	2016-04-27 15:13:41.126499861 +0200
72fc97
@@ -88,7 +88,7 @@ MD5authdecrypt(
72fc97
 		    "MAC decrypt: MAC length error");
72fc97
 		return (0);
72fc97
 	}
72fc97
-	return (!memcmp(digest, (char *)pkt + length + 4, len));
72fc97
+	return (!CRYPTO_memcmp(digest, (char *)pkt + length + 4, len));
72fc97
 }
72fc97
 
72fc97
 /*
72fc97
diff -up ntp-4.2.6p5/sntp/crypto.c.cve-2016-1550 ntp-4.2.6p5/sntp/crypto.c
72fc97
--- ntp-4.2.6p5/sntp/crypto.c.cve-2016-1550	2010-11-14 09:47:00.000000000 +0100
72fc97
+++ ntp-4.2.6p5/sntp/crypto.c	2016-04-27 15:13:41.126499861 +0200
72fc97
@@ -58,7 +58,7 @@ auth_md5(
72fc97
 	if (!hash_len)
72fc97
 		authentic = FALSE;
72fc97
 	else
72fc97
-		authentic = !memcmp(digest, pkt_data + pkt_size + 4,
72fc97
+		authentic = !CRYPTO_memcmp(digest, pkt_data + pkt_size + 4,
72fc97
 				    hash_len);
72fc97
 	return authentic;
72fc97
 }