Ubuntu Security Notice USN-5543-1

Ubuntu Security Notice USN-5543-1: Posted Aug 2, 2022; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5543-1 - Yu Zhang and Nanyu Zhong discovered that Net-SNMP incorrectly handled memory operations when processing certain requests. A remote attacker could use this issue to cause Net-SNMP to crash, resulting in a denial of service, or possibly execute arbitrary code.; tags | advisory, remote, denial of service, arbitrary; systems | linux, ubuntu; advisories | CVE-2022-24805, CVE-2022-24809; SHA-256 | 153417a2fbd138ed01adf8e6296b0b3124a2f4d608835e96715157fb56c53600; Download | Favorite | View

Ubuntu Security Notice USN-5543-1

==========================================================================
Ubuntu Security Notice USN-5543-1
August 01, 2022

net-snmp vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS

Summary:

Several security issues were fixed in Net-SNMP.

Software Description:
- net-snmp: SNMP (Simple Network Management Protocol) server and applications

Details:

Yu Zhang and Nanyu Zhong discovered that Net-SNMP incorrectly handled
memory operations when processing certain requests. A remote attacker could
use this issue to cause Net-SNMP to crash, resulting in a denial of
service, or possibly execute arbitrary code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 22.04 LTS:
  libsnmp-perl                    5.9.1+dfsg-1ubuntu2.2
  libsnmp40                       5.9.1+dfsg-1ubuntu2.2
  snmp                            5.9.1+dfsg-1ubuntu2.2
  snmpd                           5.9.1+dfsg-1ubuntu2.2

Ubuntu 20.04 LTS:
  libsnmp-perl                    5.8+dfsg-2ubuntu2.4
  libsnmp35                       5.8+dfsg-2ubuntu2.4
  snmp                            5.8+dfsg-2ubuntu2.4
  snmpd                           5.8+dfsg-2ubuntu2.4

Ubuntu 18.04 LTS:
  libsnmp-perl                    5.7.3+dfsg-1.8ubuntu3.7
  libsnmp30                       5.7.3+dfsg-1.8ubuntu3.7
  snmp                            5.7.3+dfsg-1.8ubuntu3.7
  snmpd                           5.7.3+dfsg-1.8ubuntu3.7

After a standard system update you need to restart snmpd to make all the
necessary changes.

References:
  https://ubuntu.com/security/notices/USN-5543-1
  CVE-2022-24805, CVE-2022-24806, CVE-2022-24807, CVE-2022-24808,
  CVE-2022-24809, CVE-2022-24810

Package Information:
  https://launchpad.net/ubuntu/+source/net-snmp/5.9.1+dfsg-1ubuntu2.2
  https://launchpad.net/ubuntu/+source/net-snmp/5.8+dfsg-2ubuntu2.4
  https://launchpad.net/ubuntu/+source/net-snmp/5.7.3+dfsg-1.8ubuntu3.7

Top Authors In Last 30 Days

Red Hat 272 files
Ubuntu 60 files
Debian 19 files
Gentoo 8 files
Apple 5 files
Google Security Research 4 files
Jann Horn 3 files
Spencer McIntyre 3 files
LiquidWorm 3 files
Pierre Kim 2 files

File Archives

Systems

AIX (430)
Apple (2,132)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,172)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,607)
HPUX (881)
iOS (395)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (52,112)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,459)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (10,018)
UNIX (9,482)
UnixWare (188)
Windows (6,785)
Other

Ubuntu Security Notice USN-5543-1

Ubuntu Security Notice USN-5543-1

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Ubuntu Security Notice USN-5543-1

Share This

Ubuntu Security Notice USN-5543-1

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems