USN-175-1: ntp server vulnerability
Thomas Biege discovered a flaw in the privilege dropping of the NTP server. When ntpd was configured to drop root privileges, and the group to run under was specified as a name as opposed to a numeric group ID, ntpd changed to the wrong group. Depending on the actual group it changed to, this cou...