Red Hat Bugzilla – Bug 50812
snmpd Buffer Overflow (Non-Malicious)
Last modified: 2015-03-04 20:09:25 EST
From Bugzilla Helper:
User-Agent: Mozilla/4.77 [en] (X11; U; Linux 2.4.2-2smp i686)
Description of problem:
snmpd dumps core when you try to specify a logfile name/path with an
excessively long name. Could this be better handled with an error
Steps to Reproduce:
1. Run "/usr/sbin/snmpd -l [extremely long list of characters -- I was
using over 500 A's]"
2. Watch it dump.
Actual Results: It dumped core.
Expected Results: It would be nice if it did something like "the logfile
name you specified is invalid. please use a shorter name."
As near as I can tell, there's no way to exploit a system or otherwise
cause damage to it with this, but it would be nice if handled it a bit more
Note: this will be fixed in the shortly released 4.2.2 release.
The latest version (4.2.3) is available via rawhide now. This should fix this
Read ya, Phil