Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2014-0019)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.10.2014.0019

Categoría: Mageia Linux Local Security Checks

Título: Mageia: Security Advisory (MGASA-2014-0019)

Resumen: The remote host is missing an update for the 'net-snmp' package(s) announced via the MGASA-2014-0019 advisory.

Descripción: Summary:
The remote host is missing an update for the 'net-snmp' package(s) announced via the MGASA-2014-0019 advisory.

Vulnerability Insight:
Updated net-snmp packages fix security vulnerability:

Net-SNMP 5.7.1 and earlier, when AgentX is registering to handle a MIB and
processing GETNEXT requests, allows remote attackers to cause a denial of
service (crash or infinite loop, CPU consumption, and hang) by causing the
AgentX subagent to timeout (CVE-2012-6151).

This update also fixes two other minor issues: IPADDRESS size in
python-netsnmp on 64-bit systems and adding btrfs support to hrFSTable.

Affected Software/OS:
'net-snmp' package(s) on Mageia 3.

Solution:
Please install the updated package(s).

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2012-6151
55804
http://secunia.com/advisories/55804
57870
http://secunia.com/advisories/57870
59974
http://secunia.com/advisories/59974
64048
http://www.securityfocus.com/bid/64048
APPLE-SA-2015-10-21-4
http://lists.apple.com/archives/security-announce/2015/Oct/msg00005.html
GLSA-201409-02
http://www.gentoo.org/security/en/glsa/glsa-201409-02.xml
RHSA-2014:0322
https://rhn.redhat.com/errata/RHSA-2014-0322.html
USN-2166-1
http://www.ubuntu.com/usn/USN-2166-1
[oss-security] 20131202 NMPD DoS #2411 snmpd crashes/hangs when AgentX subagent times-out
http://seclists.org/oss-sec/2013/q4/398
[oss-security] 20131202 Re: SNMPD DoS #2411 snmpd crashes/hangs when AgentX subagent times-out
http://seclists.org/oss-sec/2013/q4/415
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
http://sourceforge.net/p/net-snmp/bugs/2411/
https://bugzilla.redhat.com/show_bug.cgi?id=1038007
https://support.apple.com/HT205375
netsnmp-cve20126151-dos(89485)
https://exchange.xforce.ibmcloud.com/vulnerabilities/89485

Copyright Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2014.0019
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2014-0019)
Resumen:	The remote host is missing an update for the 'net-snmp' package(s) announced via the MGASA-2014-0019 advisory.
Descripción:	Summary: The remote host is missing an update for the 'net-snmp' package(s) announced via the MGASA-2014-0019 advisory. Vulnerability Insight: Updated net-snmp packages fix security vulnerability: Net-SNMP 5.7.1 and earlier, when AgentX is registering to handle a MIB and processing GETNEXT requests, allows remote attackers to cause a denial of service (crash or infinite loop, CPU consumption, and hang) by causing the AgentX subagent to timeout (CVE-2012-6151). This update also fixes two other minor issues: IPADDRESS size in python-netsnmp on 64-bit systems and adding btrfs support to hrFSTable. Affected Software/OS: 'net-snmp' package(s) on Mageia 3. Solution: Please install the updated package(s). CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2012-6151 55804 http://secunia.com/advisories/55804 57870 http://secunia.com/advisories/57870 59974 http://secunia.com/advisories/59974 64048 http://www.securityfocus.com/bid/64048 APPLE-SA-2015-10-21-4 http://lists.apple.com/archives/security-announce/2015/Oct/msg00005.html GLSA-201409-02 http://www.gentoo.org/security/en/glsa/glsa-201409-02.xml RHSA-2014:0322 https://rhn.redhat.com/errata/RHSA-2014-0322.html USN-2166-1 http://www.ubuntu.com/usn/USN-2166-1 [oss-security] 20131202 NMPD DoS #2411 snmpd crashes/hangs when AgentX subagent times-out http://seclists.org/oss-sec/2013/q4/398 [oss-security] 20131202 Re: SNMPD DoS #2411 snmpd crashes/hangs when AgentX subagent times-out http://seclists.org/oss-sec/2013/q4/415 http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705 http://sourceforge.net/p/net-snmp/bugs/2411/ https://bugzilla.redhat.com/show_bug.cgi?id=1038007 https://support.apple.com/HT205375 netsnmp-cve20126151-dos(89485) https://exchange.xforce.ibmcloud.com/vulnerabilities/89485
Copyright	Copyright (C) 2022 Greenbone AG