Stay Secure with the Latest Linux Advisories

security advisoryFedoranetwork management

Fedora 10: 2009-1769 moderate: Net-SNMP Tcp Wrappers Integration Fix

fix tcp_wrappers integration (CVE-2008-6123). --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2009-1769 2009-02-17 14:51:02 --------------------------------------------------------------------------------Name : net-snmp Product : Fedora 10 Version : 5.4.2.1 Release : 3.fc10 URL : https://net-snmp.sourceforge.io/ Summary : A collection of SNMP protocol tools and libraries Description : SNMP (Simple Network Management Protocol) is a protocol used for network management. The NET-SNMP project includes various SNMP tools: an extensible agent, an SNMP library, tools for requesting or setting information from SNMP agents, tools for generating and handling SNMP traps, a version of the netstat command which uses SNMP, and a Tk/Perl mib browser. This package contains the snmpd and snmptrapd daemons, documentation, etc. You will probably also want to install the net-snmp-utils package, which contains NET-SNMP utilities. Building option: --without tcp_wrappers : disable tcp_wrappers support --------------------------------------------------------------------------------ChangeLog: * Mon Feb 16 2009 Jan Safranek 5.4.2.1-3 - fix tcp_wrappers integration (CVE-2008-6123) * Mon Dec 1 2008 Jan Safranek 5.4.2.1-2 - rebuild for fixed rpm (#473420) * Mon Nov 3 2008 Jan Safranek 5.4.2.1-1 - explicitly require the right version and release of net-snmp and net-snmp-libs - update to net-snmp-5.4.2.1 to fix CVE-2008-4309 --------------------------------------------------------------------------------References: [ 1 ] Bug #485211 - CVE-2008-6123 net-snmp: snmp queries allowed from each remote host regardless of /etc/hosts.allow configuration (host sensitive information disclosure) https://bugzilla.redhat.com/show_bug.cgi?id=485211 --------------------------------------------------------------------------------This update can be installed with the "yum" update program. Use su-c 'yum update net-snmp' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ Fedora-package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Update for Fedora 10's net-snmp fixes tcp_wrappers integration issue with SNMP tools and services.. Fedora Update, TCP Wrappers, Net-SNMP, SNMP Security, Software Management. . Severity: Important. LinuxSecurity.com Team

Feb 17, 2009 •Important Fedora