From a40a74d92fa0dce9b2e0e896e3288cebac03c9d9 Mon Sep 17 00:00:00 2001
From: Miroslav Lichvar <mlichvar@redhat.com>
Date: May 02 2016 12:05:06 +0000
Subject: 4.2.6p5-40


---

diff --git a/ntp.spec b/ntp.spec
index 9b26a60..59c47ce 100644
--- a/ntp.spec
+++ b/ntp.spec
@@ -3,7 +3,7 @@
 Summary: The NTP daemon and utilities
 Name: ntp
 Version: 4.2.6p5
-Release: 39%{?dist}
+Release: 40%{?dist}
 # primary license (COPYRIGHT) : MIT
 # ElectricFence/ (not used) : GPLv2
 # kernel/sys/ppsclock.h (not used) : BSD with advertising
@@ -564,6 +564,13 @@ popd
 %{ntpdocdir}/html
 
 %changelog
+* Mon May 02 2016 Miroslav Lichvar <mlichvar@redhat.com> 4.2.6p5-40
+- don't allow spoofed packet to enable symmetric interleaved mode
+  (CVE-2016-1548)
+- don't crash on duplicate address in unconfig command (CVE-2016-2516)
+- check mode of new source in config command (CVE-2016-2518)
+- make MAC check resilient against timing attack (CVE-2016-1550)
+
 * Wed Apr 06 2016 Miroslav Lichvar <mlichvar@redhat.com> 4.2.6p5-39
 - update reference timestamp in orphan mode
 - allow sources specified by IPv6 link-local address