Showing 1 - 4 of 4

CVE-2022-24809

Status Candidate

Overview

net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-only credentials can use a malformed OID in a `GET-NEXT` to the `nsVacmAccessTable` to cause a NULL pointer dereference. Version 5.9.2 contains a patch. Users should use strong SNMPv3 credentials and avoid sharing the credentials. Those who must use SNMPv1 or SNMPv2c should use a complex community string and enhance the protection by restricting access to a given IP address range.

Related Files

Ubuntu Security Notice USN-5795-2: Posted Jan 17, 2023; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5795-2 - USN-5795-1 and 5543-1 fixed several vulnerabilities in Net-SNMP. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. It was discovered that Net-SNMP incorrectly handled certain requests. A remote attacker could possibly use these issues to cause Net-SNMP to crash, resulting in a denial of service.; tags | advisory, remote, denial of service, vulnerability; systems | linux, ubuntu; advisories | CVE-2022-24805, CVE-2022-24809; SHA-256 | d9d08e3214821b71088f0e661fc35f614a3d7138d1b4f7b2637877abad6a308f; Download | Favorite | View

Gentoo Linux Security Advisory 202210-29: Posted Oct 31, 2022; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 202210-29 - Multiple vulnerabilities have been discovered in Net-SNMP, the worst of which could result in denial of service. Versions less than 5.9.2 are affected.; tags | advisory, denial of service, vulnerability; systems | linux, gentoo; advisories | CVE-2022-24805, CVE-2022-24806, CVE-2022-24807, CVE-2022-24808, CVE-2022-24809, CVE-2022-24810; SHA-256 | 7d56d5866d332c28f93f487543c282a7f0d12a991e0ed234055a043d72d0c068; Download | Favorite | View

Debian Security Advisory 5209-1: Posted Aug 28, 2022; Authored by Debian | Site debian.org; Debian Linux Security Advisory 5209-1 - Yu Zhang and Nanyu Zhong discovered several vulnerabilities in net-snmp, a suite of Simple Network Management Protocol applications, which could result in denial of service or the execution of arbitrary code.; tags | advisory, denial of service, arbitrary, vulnerability, protocol; systems | linux, debian; advisories | CVE-2022-24805, CVE-2022-24806, CVE-2022-24807, CVE-2022-24808, CVE-2022-24809, CVE-2022-24810; SHA-256 | 9d5a758e9f384092d74475c755963922f216382b3dcfaa96caae55b56f367106; Download | Favorite | View

Ubuntu Security Notice USN-5543-1: Posted Aug 2, 2022; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5543-1 - Yu Zhang and Nanyu Zhong discovered that Net-SNMP incorrectly handled memory operations when processing certain requests. A remote attacker could use this issue to cause Net-SNMP to crash, resulting in a denial of service, or possibly execute arbitrary code.; tags | advisory, remote, denial of service, arbitrary; systems | linux, ubuntu; advisories | CVE-2022-24805, CVE-2022-24809; SHA-256 | 153417a2fbd138ed01adf8e6296b0b3124a2f4d608835e96715157fb56c53600; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 326 files
Ubuntu 72 files
Debian 21 files
Apple 14 files
LiquidWorm 13 files
Gentoo 8 files
Google Security Research 4 files
Andrey Stoykov 3 files
Jann Horn 3 files
Alter Prime 3 files

File Archives

Systems

AIX (430)
Apple (2,132)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,172)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,607)
HPUX (881)
iOS (395)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (52,112)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,459)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (10,018)
UNIX (9,482)
UnixWare (188)
Windows (6,785)
Other

CVE-2022-24809

Overview

Related Files

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems