Showing 1 - 4 of 4

CVE-2022-24809

Status Candidate

Overview

net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-only credentials can use a malformed OID in a `GET-NEXT` to the `nsVacmAccessTable` to cause a NULL pointer dereference. Version 5.9.2 contains a patch. Users should use strong SNMPv3 credentials and avoid sharing the credentials. Those who must use SNMPv1 or SNMPv2c should use a complex community string and enhance the protection by restricting access to a given IP address range.

Related Files

Ubuntu Security Notice USN-5795-2: Posted Jan 17, 2023; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5795-2 - USN-5795-1 and 5543-1 fixed several vulnerabilities in Net-SNMP. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. It was discovered that Net-SNMP incorrectly handled certain requests. A remote attacker could possibly use these issues to cause Net-SNMP to crash, resulting in a denial of service.; tags | advisory, remote, denial of service, vulnerability; systems | linux, ubuntu; advisories | CVE-2022-24805, CVE-2022-24809; SHA-256 | d9d08e3214821b71088f0e661fc35f614a3d7138d1b4f7b2637877abad6a308f; Download | Favorite | View

Gentoo Linux Security Advisory 202210-29: Posted Oct 31, 2022; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 202210-29 - Multiple vulnerabilities have been discovered in Net-SNMP, the worst of which could result in denial of service. Versions less than 5.9.2 are affected.; tags | advisory, denial of service, vulnerability; systems | linux, gentoo; advisories | CVE-2022-24805, CVE-2022-24806, CVE-2022-24807, CVE-2022-24808, CVE-2022-24809, CVE-2022-24810; SHA-256 | 7d56d5866d332c28f93f487543c282a7f0d12a991e0ed234055a043d72d0c068; Download | Favorite | View

Debian Security Advisory 5209-1: Posted Aug 28, 2022; Authored by Debian | Site debian.org; Debian Linux Security Advisory 5209-1 - Yu Zhang and Nanyu Zhong discovered several vulnerabilities in net-snmp, a suite of Simple Network Management Protocol applications, which could result in denial of service or the execution of arbitrary code.; tags | advisory, denial of service, arbitrary, vulnerability, protocol; systems | linux, debian; advisories | CVE-2022-24805, CVE-2022-24806, CVE-2022-24807, CVE-2022-24808, CVE-2022-24809, CVE-2022-24810; SHA-256 | 9d5a758e9f384092d74475c755963922f216382b3dcfaa96caae55b56f367106; Download | Favorite | View

Ubuntu Security Notice USN-5543-1: Posted Aug 2, 2022; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5543-1 - Yu Zhang and Nanyu Zhong discovered that Net-SNMP incorrectly handled memory operations when processing certain requests. A remote attacker could use this issue to cause Net-SNMP to crash, resulting in a denial of service, or possibly execute arbitrary code.; tags | advisory, remote, denial of service, arbitrary; systems | linux, ubuntu; advisories | CVE-2022-24805, CVE-2022-24809; SHA-256 | 153417a2fbd138ed01adf8e6296b0b3124a2f4d608835e96715157fb56c53600; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 234 files
indoushka 93 files
Ubuntu 87 files
Gentoo 36 files
Jasper Nota 25 files
Debian 21 files
Willem Westerhof 19 files
Jim Blankendaal 11 files
Apple 9 files
Martijn Baalman 9 files

File Archives

Systems

AIX (429)
Apple (2,099)
BSD (377)
CentOS (58)
Cisco (1,927)
Debian (7,099)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,567)
HPUX (880)
iOS (378)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,756)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,521)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,747)
UNIX (9,436)
UnixWare (187)
Windows (6,674)
Other

CVE-2022-24809

Overview

Related Files

File Archive:

August 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems