Lucene search

K
osvGoogleOSV:DSA-1483-1
HistoryFeb 06, 2008 - 12:00 a.m.

net-snmp - denial of service

2008-02-0600:00:00
Google
osv.dev
11

EPSS

0.794

Percentile

98.3%

The SNMP agent (snmp_agent.c) in net-snmp before 5.4.1 allows remote
attackers to cause a denial of service (CPU and memory consumption)
via a GETBULK request with a large max-repeaters value.

For the stable distribution (etch), this problem has been fixed in
version 5.2.3-7etch2.

For the unstable and testing distributions (sid and lenny,
respectively), this problem has been fixed in version 5.4.1~dfsg-2.

We recommend that you upgrade your net-snmp package.

CPENameOperatorVersion
net-snmpeq5.2.3-7
net-snmpeq5.2.3-7etch1