On Mon, Jul 06, 2015 at 11:04:25AM +0000, Vijendra Agarwal (vijagarw) wrote: > > Hi All, > Currently CentOS site contains the below version of ntpd. > ntp-4.2.6p5-3.el6.centos.x86_64.rpm<http://mirror.centos.org/centos/6.6/updates/x86_64/Packages/ntp-4.2.6p5-3.el6.centos.x86_64.rpm> :- 16 mar 2015. > > Does anybody have any information about when the new version of ntpd is expected to release containing new vulnerabilities fixes? If you're talking about this: http://support.ntp.org/bin/view/Main/SecurityNotice#June_2015_NTP_Security_Vulnerabi Then you'd probably be best tracking the RHEL CVE entry: https://access.redhat.com/security/cve/CVE-2015-5146 which is currently marked as **RESERVED**. It's marked as "Low" impact. -- Jonathan Billings <billings at negate.org>