[ubuntu/kinetic-security] net-snmp 5.9.3+dfsg-1ubuntu1.2 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Mon Jan 9 13:05:39 UTC 2023
net-snmp (5.9.3+dfsg-1ubuntu1.2) kinetic-security; urgency=medium
* SECURITY UPDATE: DoS via null pointer exception issues
- debian/patches/CVE-2022-4479x-1.patch: disallow SET with NULL varbind
in agent/snmp_agent.c.
- debian/patches/CVE-2022-4479x-2.patch: allow SET with NULL varbind
for testing in apps/snmpset.c.
- debian/patches/CVE-2022-4479x-3.patch: add test for NULL varbind set
in testing/fulltests/default/T0142snmpv2csetnull_simple.
- CVE-2022-44792
- CVE-2022-44793
* This package does _not_ contain the changes from 5.9.3+dfsg-1ubuntu1.1
in kinetic-proposed.
Date: 2023-01-06 18:34:08.747882+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/net-snmp/5.9.3+dfsg-1ubuntu1.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the kinetic-changes
mailing list