Package name
net-snmp
Date
2014-01-22
Advisory ID
MDVSA-2014:017
Affected versions
MBS1 x86_64

Problem description

Updated net-snmp packages fix security vulnerability:

Net-SNMP 5.7.1 and earlier, when AgentX is registering to handle
a MIB and processing GETNEXT requests, allows remote attackers to
cause a denial of service (crash or infinite loop, CPU consumption,
and hang) by causing the AgentX subagent to timeout (CVE-2012-6151).

This update also fixes two other minor issues: IPADDRESS size in
python-netsnmp on 64-bit systems and adding btrfs support to hrFSTable.

Updated packages

MBS1 x86_64

 959228fa98cb764643fda49fc3f2d16b  mbs1/x86_64/lib64net-snmp30-5.7.2-1.mbs1.x86_64.rpm
 521d3baf5a9bc2b64b645d5fded54b4b  mbs1/x86_64/lib64net-snmp-devel-5.7.2-1.mbs1.x86_64.rpm
 cd4b2bc8aa2adc8cda3d96afb0594e26  mbs1/x86_64/lib64net-snmp-static-devel-5.7.2-1.mbs1.x86_64.rpm
 86ebfcc8f265fa0af6b43b4fe07a7edf  mbs1/x86_64/net-snmp-5.7.2-1.mbs1.x86_64.rpm
 887b5a7ef272830005001bfd899d223d  mbs1/x86_64/net-snmp-mibs-5.7.2-1.mbs1.x86_64.rpm
 7f6123819e280fd7e88acb01f61e6567  mbs1/x86_64/net-snmp-tkmib-5.7.2-1.mbs1.x86_64.rpm
 6a495803e81a1896242b0943230ea895  mbs1/x86_64/net-snmp-trapd-5.7.2-1.mbs1.x86_64.rpm
 befe57de590d5c41fcc147abc06c1a97  mbs1/x86_64/net-snmp-utils-5.7.2-1.mbs1.x86_64.rpm
 56810dcad44c9b1608b6141fa12f9a45  mbs1/x86_64/perl-NetSNMP-5.7.2-1.mbs1.x86_64.rpm
 a92230ace71657d042cd7bf770c98234  mbs1/x86_64/python-netsnmp-5.7.2-1.mbs1.x86_64.rpm 
 7e1c7f2c91b059835d1ff01ddd1fdc58  mbs1/SRPMS/net-snmp-5.7.2-1.mbs1.src.rpm

References