MGASA-2022-0311
- Source
- https://advisories.mageia.org/MGASA-2022-0311.html
- Import Source
- https://advisories.mageia.org/MGASA-2022-0311.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/MGASA-2022-0311
- Related
- Published
- 2022-08-29T05:07:41Z
- Modified
- 2022-08-29T04:06:59Z
- Summary
- Updated net-snmp packages fix security vulnerability
- Details
-
A buffer overflow in the handling of the INDEX of NET-SNMP-VACM-MIB can cause an out-of-bounds memory access. (CVE-2022-24805) Buffer overflow and out of bounds memory access. (CVE-2022-24806) A malformed OID in a SET request to SNMP-VIEW-BASED-ACM-MIB::vacmAccessTable can cause an out-of-bounds memory access. (CVE-2022-24807) A malformed OID in a SET request to NET-SNMP-AGENT-MIB::nsLogTable can cause a NULL pointer dereference. (CVE-2022-24808) A malformed OID in a GET-NEXT to the nsVacmAccessTable can cause a NULL pointer dereference. (CVE-2022-24809) A malformed OID in a SET to the nsVacmAccessTable can cause a NULL pointer dereference. (CVE-2022-24810)
- References
-
- https://advisories.mageia.org/MGASA-2022-0311.html
- https://bugs.mageia.org/show_bug.cgi?id=30697
- https://ubuntu.com/security/notices/USN-5543-1
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/FX75KKGMO5XMV6JMQZF6KOG3JPFNQBY7/
- https://www.debian.org/security/2022/dsa-5209
- Credits
-
-
- Mageia - COORDINATOR
-