 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.123759 |
| Category: | Oracle Linux Local Security Checks |
| Title: | Oracle: Security Advisory (ELSA-2013-0124) |
| Summary: | The remote host is missing an update for the 'net-snmp' package(s) announced via the ELSA-2013-0124 advisory. |
| Description: | Summary: The remote host is missing an update for the 'net-snmp' package(s) announced via the ELSA-2013-0124 advisory. Vulnerability Insight: [5.3.2.2-20.0.2.el5] - snmptrapd: Fix crash due to access of freed memory (John Haxby) [orabug 14391194] [5.3.2.2-20.0.1.el5] - suppress spurious asserts on 32bit [Greg Marsden] [5.3.2.2-20] - fixed error message when the address specified by clientaddr option is wrong or cannot be bound (#840861) [5.3.2.2-19] - fixed support for port numbers in 'clientaddr' configuration option (#840861, #845974) - added support of cvfs filesystem hrStorageTable (#846391) - removed various error log messages when IPv6 is disabled (#845155) - removed various error log messages related to counte64 expansions (#846905) [5.3.2.2-18] - added support of ocfs2, tmpfs and reiserfs in hrStorageTable (#754652, #755958, #822061) - updated documentation of '-c' option of snmptrapd (#760001) - fixed endless loop after truncating 64bit int (#783892) - fixed snmpd exiting shortly after startup due to incoming signal (#799699) - fixed decoding of COUNTER64 values from AgentX (#803585) - fixed engineID of outgoing traps if 'trapsess -e ' is used in snmpd.conf (#805689) - fixed CVE-2012-2141, an array index error in the extension table (#815813) - fixed snmpd showing 'failed to run mteTrigger query' when 'monitor' config option is used (#830042) - added support for port numbers in 'clientaddr' configuration option (#828691) Affected Software/OS: 'net-snmp' package(s) on Oracle Linux 5. Solution: Please install the updated package(s). CVSS Score: 3.5 CVSS Vector: AV:N/AC:M/Au:S/C:N/I:N/A:P |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2012-2141 1026984 http://www.securitytracker.com/id?1026984 48938 http://secunia.com/advisories/48938 53255 http://www.securityfocus.com/bid/53255 53258 http://www.securityfocus.com/bid/53258 59974 http://secunia.com/advisories/59974 GLSA-201409-02 http://www.gentoo.org/security/en/glsa/glsa-201409-02.xml RHSA-2013:0124 http://rhn.redhat.com/errata/RHSA-2013-0124.html [oss-security] 20120426 CVE Request -- net-snmp: Array index error, leading to out-of heap-based buffer read (snmpd crash) http://www.openwall.com/lists/oss-security/2012/04/26/2 [oss-security] 20120426 Re: CVE Request -- net-snmp: Array index error, leading to out-of heap-based buffer read (snmpd crash) http://www.openwall.com/lists/oss-security/2012/04/26/3 http://support.citrix.com/article/CTX139049 https://bugzilla.redhat.com/show_bug.cgi?id=815813 netsnmp-snmpget-dos(75169) https://exchange.xforce.ibmcloud.com/vulnerabilities/75169 |
| Copyright | Copyright (C) 2015 Greenbone AG |
| This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |