Linux Security
    Linux Security
    Linux Security

    Debian LTS: DLA-2299-1: net-snmp security update

    Date
    220
    Posted By
    A privilege escalation vulnerability vulnerability was discovered in Net-SNMP, a set of tools for collecting and organising information about devices on computer networks.
    
    Package        : net-snmp
    Version        : 5.7.3+dfsg-1.7+deb9u2
    Debian Bug     : #965166
    
    A privilege escalation vulnerability vulnerability was discovered in
    Net-SNMP, a set of tools for collecting and organising information
    about devices on computer networks.
    
    Upstream notes that:
    
    * It is still possible to enable this MIB via the
      --with-mib-modules configure option.
    
    * Another MIB that provides similar functionality, namely
      ucd-snmp/extensible, is disabled by default.
    
    * The security risk of ucd-snmp/pass and ucd-snmp/pass_persist is
      lower since these modules only introduce a security risk if the
      invoked scripts are exploitable.
    
    
    For Debian 9 "Stretch", this issue has been fixed in net-snmp version
    5.7.3+dfsg-1.7+deb9u2.
    
    We recommend that you upgrade your net-snmp packages.
    
    Further information about Debian LTS security advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://wiki.debian.org/LTS
    
    

    Advisories

    LinuxSecurity Poll

    How are you contributing to Open Source?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 4 answer(s).
    /main-polls/37-how-are-you-contributing-to-open-source?task=poll.vote&format=json
    37
    radio
    [{"id":"127","title":"I'm involved with the development of an open-source project(s).","votes":"1","type":"x","order":"1","pct":100,"resources":[]},{"id":"128","title":"I've reported vulnerabilities I've discovered in open-source code.","votes":"0","type":"x","order":"2","pct":0,"resources":[]},{"id":"129","title":"I've provided developers with feedback on their projects.","votes":"0","type":"x","order":"3","pct":0,"resources":[]},{"id":"130","title":"I've helped another community member get started contributing to Open Source.","votes":"0","type":"x","order":"4","pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350


    VIEW MORE POLLS

    bottom 200

    Please enable / Bitte aktiviere JavaScript!
    Veuillez activer / Por favor activa el Javascript![ ? ]

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.