Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Gentoo 200711-31 Normal: Net-SNMP DoS Threat and Mitigation

gentoo
Calendar Grey November 20, 2007
Dist Gentoo Esm H88
A critical flaw has been identified in Net-SNMP that poses a Denial of Service threat to Gentoo users. Please perform an upgrade to ensure system integrity.
A Denial of Service vulnerability has been discovered in Net-SNMP when processing GETBULK requests.

Summary

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Gentoo Linux Security Advisory                           GLSA 200711-31
                                            https://security.gentoo.org/

  Severity: Normal
     Title: Net-SNMP: Denial of Service
      Date: November 20, 2007
      Bugs: #198346
        ID: 200711-31


Synopsis
=======
A Denial of Service vulnerability has been discovered in Net-SNMP when
processing GETBULK requests.

Background
=========
Net-SNMP is a collection of tools for generating and retrieving SNMP
data.

Affected packages
================
    -------------------------------------------------------------------
     Package                /  Vulnerable  /                Unaffected
    -------------------------------------------------------------------
  1  net-analyzer/net-snmp     < 5.4.1-r1                  >= 5.4.1-r1

==========
The SNMP agent (snmpd) does not properly handle GETBULK requests with
an overly large "max-repetitions" field.

Impact
=====
A remo...
Read the Full Advisory
Topics%20covered

Topics Covered

security advisory denial of service security issue gentoo exploit net-snmp

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory denial of service security issue gentoo exploit net-snmp

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here