This service will be undergoing maintenance at 00:00 UTC, 2016-09-28. It is expected to last about 1 hours
Bug 78960 - Remote Denial of Service with Net-SNMP
Remote Denial of Service with Net-SNMP
Status: CLOSED ERRATA
Product: Red Hat Linux
Classification: Retired
Component: net-snmp (Show other bugs)
7.3
All Linux
medium Severity medium
: ---
: ---
Assigned To: Phil Knirsch
http://www.securiteam.com/unixfocus/6...
: Security
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2002-12-03 18:01 EST by Need Real Name
Modified: 2015-03-04 20:11 EST (History)
2 users (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2002-12-17 06:22:29 EST
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:


Attachments (Terms of Use)

  None (edit)
Description Need Real Name 2002-12-03 18:01:59 EST
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.2) Gecko/20021127

Description of problem:
Both Red Hat 7.3 and 8.0 ship an older version of Net-SNMP for which there is a
confirmed remote denial of service vulnerability.

Version-Release number of selected component (if applicable):


How reproducible:
Always

Steps to Reproduce:
N/A

Actual Results:  N/A

Expected Results:  N/A

Additional info:

This vulnerability was fixed in version 5.0.5 of Net-SNMP.
Comment 1 Mark J. Cox (Product Security) 2002-12-04 05:58:59 EST
This is CAN-2002-1170
Comment 2 Phil Knirsch 2002-12-04 06:00:42 EST
We don't ship net-snmp for 7.3, only for 8.0

And for 8.0 we are currently in the process of doing an errata which is going to
be release real soon now (hopefully sometime this week).

Read ya, Phil
Comment 3 Mark J. Cox (Product Security) 2002-12-05 03:07:04 EST
leaving open until errata is created - will get closed automatically at that time

Note You need to log in before you can comment on or make changes to this bug.