[SECURITY] [DSA 5209-1] net-snmp security update

2022-08-1620:06:51

lists.debian.org

net-snmp

debian

security update

cve-2022-24805

cve-2022-24806

cve-2022-24807

denial of service

arbitrary code

bullseye

package upgrade

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

8.1 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

13.0%

JSON

Debian Security Advisory DSA-5209-1 [email protected]
https://www.debian.org/security/ Salvatore Bonaccorso
August 16, 2022 https://www.debian.org/security/faq

Package : net-snmp
CVE ID : CVE-2022-24805 CVE-2022-24806 CVE-2022-24807 CVE-2022-24808
CVE-2022-24809 CVE-2022-24810
Debian Bug : 1016139

Yu Zhang and Nanyu Zhong discovered several vulnerabilities in net-snmp,
a suite of Simple Network Management Protocol applications, which could
result in denial of service or the execution of arbitrary code.

For the stable distribution (bullseye), these problems have been fixed in
version 5.9+dfsg-4+deb11u1.

We recommend that you upgrade your net-snmp packages.

For the detailed security status of net-snmp please refer to its
security tracker page at:
https://security-tracker.debian.org/tracker/net-snmp

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian11s390xlibsnmp-perl< 5.9+dfsg-4+deb11u1libsnmp-perl_5.9+dfsg-4+deb11u1_s390x.deb
Debian11armelsnmptrapd< 5.9+dfsg-4+deb11u1snmptrapd_5.9+dfsg-4+deb11u1_armel.deb
Debian11ppc64elsnmpd< 5.9+dfsg-4+deb11u1snmpd_5.9+dfsg-4+deb11u1_ppc64el.deb
Debian10i386libsnmp30< 5.7.3+dfsg-5+deb10u3libsnmp30_5.7.3+dfsg-5+deb10u3_i386.deb
Debian11mips64elsnmp< 5.9+dfsg-4+deb11u1snmp_5.9+dfsg-4+deb11u1_mips64el.deb
Debian11armellibsnmp-perl< 5.9+dfsg-4+deb11u1libsnmp-perl_5.9+dfsg-4+deb11u1_armel.deb
Debian10i386python-netsnmp< 5.7.3+dfsg-5+deb10u3python-netsnmp_5.7.3+dfsg-5+deb10u3_i386.deb
Debian11arm64snmpd-dbgsym< 5.9+dfsg-4+deb11u1snmpd-dbgsym_5.9+dfsg-4+deb11u1_arm64.deb
Debian11armellibsnmp40< 5.9+dfsg-4+deb11u1libsnmp40_5.9+dfsg-4+deb11u1_armel.deb
Debian11s390xlibsnmp-dev< 5.9+dfsg-4+deb11u1libsnmp-dev_5.9+dfsg-4+deb11u1_s390x.deb

OS	Version	Architecture	Package	Version	Filename
Debian	11	s390x	libsnmp-perl	< 5.9+dfsg-4+deb11u1	libsnmp-perl_5.9+dfsg-4+deb11u1_s390x.deb
Debian	11	armel	snmptrapd	< 5.9+dfsg-4+deb11u1	snmptrapd_5.9+dfsg-4+deb11u1_armel.deb
Debian	11	ppc64el	snmpd	< 5.9+dfsg-4+deb11u1	snmpd_5.9+dfsg-4+deb11u1_ppc64el.deb
Debian	10	i386	libsnmp30	< 5.7.3+dfsg-5+deb10u3	libsnmp30_5.7.3+dfsg-5+deb10u3_i386.deb
Debian	11	mips64el	snmp	< 5.9+dfsg-4+deb11u1	snmp_5.9+dfsg-4+deb11u1_mips64el.deb
Debian	11	armel	libsnmp-perl	< 5.9+dfsg-4+deb11u1	libsnmp-perl_5.9+dfsg-4+deb11u1_armel.deb
Debian	10	i386	python-netsnmp	< 5.7.3+dfsg-5+deb10u3	python-netsnmp_5.7.3+dfsg-5+deb10u3_i386.deb
Debian	11	arm64	snmpd-dbgsym	< 5.9+dfsg-4+deb11u1	snmpd-dbgsym_5.9+dfsg-4+deb11u1_arm64.deb
Debian	11	armel	libsnmp40	< 5.9+dfsg-4+deb11u1	libsnmp40_5.9+dfsg-4+deb11u1_armel.deb
Debian	11	s390x	libsnmp-dev	< 5.9+dfsg-4+deb11u1	libsnmp-dev_5.9+dfsg-4+deb11u1_s390x.deb