ELSA-2020-1081

Опубликовано: 06 апр. 2020

Источник: oracle-oval

Платформа: Oracle Linux 7

Описание

ELSA-2020-1081: net-snmp security and bug fix update (MODERATE)

[1:5.7.2-47]

revert calculation of free space (#1779609)

[1:5.7.2-46]

fix sha224 and sha384 declaration check (#1774693)

[1:5.7.2-45]

fix memory leak introduced by fix of snmp v3 traps forwarding (#1751195)

[1:5.7.2-44]

add support for glusterfs (#1316386)
change services to start after network-online.target (#1388118)
fix interface fadeout configuration (#1547355)
fix scanf pattern for ICMP stats (#1693547)
change buffer size in pass_common.c file (#1695363 and #1731357)
remove initial whitespace reading from scanf pattern of /sys/dev/block/../stat file (#1700494)
fix for CVE-2018-18066 (#1638911)
add Counter64 support for UCD-SNMP-MIB (#1703752)

Обновленные пакеты

Oracle Linux 7

Oracle Linux aarch64

net-snmp

5.7.2-47.el7

net-snmp-agent-libs

5.7.2-47.el7

net-snmp-devel

5.7.2-47.el7

net-snmp-gui

5.7.2-47.el7

net-snmp-libs

5.7.2-47.el7

net-snmp-perl

5.7.2-47.el7

net-snmp-python

5.7.2-47.el7

net-snmp-sysvinit

5.7.2-47.el7

net-snmp-utils

5.7.2-47.el7

Oracle Linux x86_64

net-snmp

5.7.2-47.el7

net-snmp-agent-libs

5.7.2-47.el7

net-snmp-devel

5.7.2-47.el7

net-snmp-gui

5.7.2-47.el7

net-snmp-libs

5.7.2-47.el7

net-snmp-perl

5.7.2-47.el7

net-snmp-python

5.7.2-47.el7

net-snmp-sysvinit

5.7.2-47.el7

net-snmp-utils

5.7.2-47.el7

Связанные CVE

CVE-2018-18066

Ссылки на источники

Связанные уязвимости

CVE-2018-18066

CVSS3: 7.5

ubuntu

больше 7 лет назад

snmp_oid_compare in snmplib/snmp_api.c in Net-SNMP before 5.8 has a NULL Pointer Exception bug that can be used by an unauthenticated attacker to remotely cause the instance to crash via a crafted UDP packet, resulting in Denial of Service.