OSV-2025-132 Heap-use-after-free in netsnmp_hex_to_binary

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=396777457 Crash type: Heap-use-after-free READ 1 Crash state: netsnmphextobinary snmpv3parsearg netsnmpparseargs...

PT-2025-7663 · Net Snmp · Net-Snmp

Name of the Vulnerable Software and Affected Versions: netsnmp affected versions not specified Description: The issue is related to a heap-use-after-free error. Technical details about the error include the netsnmp hex to binary function, snmpv3 parse arg function, and netsnmp parse args function...

UBUNTU-CVE-2019-20892

net-snmp before 5.8.1.pre1 has a double free in usmfreeusmStateReference in snmplib/snmpusm.c via an SNMPv3 GetBulk request. NOTE: this affects net-snmp packages shipped to end users by multiple Linux distributions, but might not affect an upstream release...

Mandriva Linux Security Advisory : net-snmp (MDVSA-2014:017)

Updated net-snmp packages fix security vulnerability : Net-SNMP 5.7.1 and earlier, when AgentX is registering to handle a MIB and processing GETNEXT requests, allows remote attackers to cause a denial of service crash or infinite loop, CPU consumption, and hang by causing the AgentX subagent to...

Updated net-snmp packages fix CVE-2012-6151

Updated net-snmp packages fix security vulnerability: Net-SNMP 5.7.1 and earlier, when AgentX is registering to handle a MIB and processing GETNEXT requests, allows remote attackers to cause a denial of service crash or infinite loop, CPU consumption, and hang by causing the AgentX subagent to...

CVE-2008-6123

The netsnmpudpfmtaddr function snmplib/snmpUDPDomain.c in net-snmp 5.0.9 through 5.4.2.1, when using TCP wrappers for client authorization, does not properly parse hosts.allow rules, which allows remote attackers to bypass intended access restrictions and execute SNMP queries, related to...

PT-2009-1598 · Net Snmp · Net-Snmp

Name of the Vulnerable Software and Affected Versions: net-snmp versions 5.0.9 through 5.4.2.1 Description: The issue is related to the netsnmp udp fmtaddr function in snmplib/snmpUDPDomain.c, which does not properly parse hosts.allow rules when using TCP wrappers for client authorization. This...

CVE-2008-4309

Integer overflow in the netsnmpcreatesubtreecache function in agent/snmpagent.c in net-snmp 5.4 before 5.4.2.1, 5.3 before 5.3.2.3, and 5.2 before 5.2.5.1 allows remote attackers to cause a denial of service crash via a crafted SNMP GETBULK request, which triggers a heap-based buffer overflow,...

CVE-2008-4309

Net-SNMP vulnerability CVE-2008-4309: an integer overflow in netsnmp_create_subtree_cache() in agent/snmp_agent.c allows remote DoS via crafted SNMP GETBULK requests, causing a heap-based overflow and crash. Affected are net-snmp 5.4 before 5.4.2.1, 5.3 before 5.3.2.3, and 5.2 before 5.2.5.1. Mit...

PT-2008-1081

Name of the Vulnerable Software and Affected Versions net-snmp versions 5.1.2 through 5.3.1 net-snmp-devel versions 5.1.2 through 5.3.1 net-snmp-libs versions 5.1.2 through 5.3.1 net-snmp-utils versions 5.1.2 through 5.3.1 Description The issue is related to an integer overflow in the netsnmp...