[ubuntu/focal-security] net-snmp 5.8+dfsg-2ubuntu2.1 (Accepted)

Paulo Flabiano Smorigo pfsmorigo at canonical.com
Thu Jul 2 15:47:55 UTC 2020


net-snmp (5.8+dfsg-2ubuntu2.1) focal-security; urgency=medium

  * SECURITY UPDATE: Fix segmentation fault that happens when using the
    snmpv3 protocol with snmpbulkget. (LP: #1877027)
    - d/p/move-securityStateRef-into-free_securityStateRef.patch:
      Consolidate the check of the securityStateRef pointer into the
      free_securityStateRef function.
    - d/p/prevent-snmpv3-bulkget-errors-double-free.patch:
      Prevent snmpv3 bulkget errors from becoming resulting in a
      double free.
    - d/p/fix-usmStateReference-free.patch:
      Fix typo on usm_free_usmStateReference from last patch.
    - d/p/unexport-struct-usmStateReference.patch:
      Unexport struct usmStateReference and to prevent ABI breakages,
      since it will be necessary to add a reference count to it.
    - d/p/introduce-refcount-usmStateReference.patch:
      Introduce refcount in the struct usmStateReference, and adjust
      code to properly use the field.
    - CVE-2019-20892

Date: 2020-07-01 20:45:14.481855+00:00
Changed-By: Sergio Durigan Junior <sergio.durigan at canonical.com>
Signed-By: Paulo Flabiano Smorigo <pfsmorigo at canonical.com>
https://launchpad.net/ubuntu/+source/net-snmp/5.8+dfsg-2ubuntu2.1
-------------- next part --------------
Sorry, changesfile not available.


More information about the Focal-changes mailing list