Advisories » MGASA-2015-0187

Updated net-snmp packages fix security vulnerabilities

Publication date: 05 May 2015
Modification date: 05 May 2015
Type: security
Affected Mageia releases : 4

Description

Updated net-snmp packages fix security vulnerability:

It was discovered that the snmp_pdu_parse() function could leave incompletely
parsed varBind variables in the list of variables. A remote, unauthenticated
attacker could exploit this flaw to cause a crash or, potentially, execute
arbitrary code.

References

SRPMS

4/core

net-snmp-5.7.2-13.3.mga4