net-snmp: added checks for printing variables with wrong types (CVE-2014-3565)
Remote denial-of-service flaw was found in the way snmptrapd handled certain SNMP traps when started with the “-OQ” option. If an attacker sent an SNMP trap containing variable with a NULL type where an integer variable type was expected, it would cause snmptrapd to crash.
Affected Net-SNMP versions:
Net-SNMP 5.7.0 - 5.7.2.1
Net-SNMP 5.6.0 - 5.6.2.1
Net-SNMP 5.5.0 - 5.5.2.1
Net-SNMP 5.4.0 - 5.4.4
References:
CONFIRM: http://seclists.org/oss-sec/2014/q3/473
COMMIT: http://sourceforge.net/p/net-snmp/official-patches/48/
COMMIT:
http://sourceforge.net/p/net-snmp/code/ci/7f4a7b891332899cea26e95be0337aae01648742/
(from redmine: issue id 3351, created on 2014-09-05, closed on 2014-09-25)
- Relations:
- child #3352 (closed)
- child #3353 (closed)
- child #3354 (closed)
- child #3355 (closed)
- Changesets:
- Revision 23a004fd by Natanael Copa on 2014-09-24T16:03:38Z:
main/net-snmp: fix CVE-2014-3565
ref #3351