Описание
ELSA-2013-0124: net-snmp security and bug fix update (MODERATE)
[5.3.2.2-20.0.2.el5]
- snmptrapd: Fix crash due to access of freed memory (John Haxby) [orabug 14391194]
[5.3.2.2-20.0.1.el5]
- suppress spurious asserts on 32bit [Greg Marsden]
[5.3.2.2-20]
- fixed error message when the address specified by clientaddr option is wrong or cannot be bound (#840861)
[5.3.2.2-19]
- fixed support for port numbers in 'clientaddr' configuration option (#840861, #845974)
- added support of cvfs filesystem hrStorageTable (#846391)
- removed various error log messages when IPv6 is disabled (#845155)
- removed various error log messages related to counte64 expansions (#846905)
[5.3.2.2-18]
- added support of ocfs2, tmpfs and reiserfs in hrStorageTable (#754652, #755958, #822061)
- updated documentation of '-c' option of snmptrapd (#760001)
- fixed endless loop after truncating 64bit int (#783892)
- fixed snmpd exiting shortly after startup due to incoming signal (#799699)
- fixed decoding of COUNTER64 values from AgentX (#803585)
- fixed engineID of outgoing traps if 'trapsess -e ' is used in snmpd.conf (#805689)
- fixed CVE-2012-2141, an array index error in the extension table (#815813)
- fixed snmpd showing 'failed to run mteTrigger query' when 'monitor' config option is used (#830042)
- added support for port numbers in 'clientaddr' configuration option (#828691)
Обновленные пакеты
Oracle Linux 5
Oracle Linux ia64
net-snmp
5.3.2.2-20.0.2.el5
net-snmp-devel
5.3.2.2-20.0.2.el5
net-snmp-libs
5.3.2.2-20.0.2.el5
net-snmp-perl
5.3.2.2-20.0.2.el5
net-snmp-utils
5.3.2.2-20.0.2.el5
Oracle Linux x86_64
net-snmp
5.3.2.2-20.0.2.el5
net-snmp-devel
5.3.2.2-20.0.2.el5
net-snmp-libs
5.3.2.2-20.0.2.el5
net-snmp-perl
5.3.2.2-20.0.2.el5
net-snmp-utils
5.3.2.2-20.0.2.el5
Oracle Linux i386
net-snmp
5.3.2.2-20.0.2.el5
net-snmp-devel
5.3.2.2-20.0.2.el5
net-snmp-libs
5.3.2.2-20.0.2.el5
net-snmp-perl
5.3.2.2-20.0.2.el5
net-snmp-utils
5.3.2.2-20.0.2.el5
Связанные CVE
Связанные уязвимости
Array index error in the handle_nsExtendOutput2Table function in agent/mibgroup/agent/extend.c in Net-SNMP 5.7.1 allows remote authenticated users to cause a denial of service (out-of-bounds read and snmpd crash) via an SNMP GET request for an entry not in the extension table.
Array index error in the handle_nsExtendOutput2Table function in agent/mibgroup/agent/extend.c in Net-SNMP 5.7.1 allows remote authenticated users to cause a denial of service (out-of-bounds read and snmpd crash) via an SNMP GET request for an entry not in the extension table.
Array index error in the handle_nsExtendOutput2Table function in agent/mibgroup/agent/extend.c in Net-SNMP 5.7.1 allows remote authenticated users to cause a denial of service (out-of-bounds read and snmpd crash) via an SNMP GET request for an entry not in the extension table.
Array index error in the handle_nsExtendOutput2Table function in agent ...
Array index error in the handle_nsExtendOutput2Table function in agent/mibgroup/agent/extend.c in Net-SNMP 5.7.1 allows remote authenticated users to cause a denial of service (out-of-bounds read and snmpd crash) via an SNMP GET request for an entry not in the extension table.