[3.3] collectd: Multiple vulnerabilities (CVE-2017-7401, CVE-2017-16820)
CVE-2017-7401: Incorrect interaction of the parse_packet() and
parse_part_sign_sha256() functions in network.c in collectd 5.7.1
and earlier allows remote attackers to cause a denial of service
(infinite loop) of a collectd instance
(configured with “SecurityLevel None” and with empty “AuthFile” options)
via a crafted UDP packet.
References:
https://github.com/collectd/collectd/issues/2174
https://nvd.nist.gov/vuln/detail/CVE-2017-7401
Patch:
https://github.com/collectd/collectd/commit/f6be4f9b49b949b379326c3d7002476e6ce4f211
CVE-2017-16820: The csnmp_read_table function in snmp.c in the
SNMP plugin in collectd before 5.6.3 is susceptible
to a double free in a certain error case, which could lead to a crash
(or potentially have other impact).
References:
http://openwall.com/lists/oss-security/2017/11/15/6
https://github.com/collectd/collectd/issues/2291
Patch:
https://github.com/collectd/collectd/commit/d16c24542b2f96a194d43a73c2e5778822b9cb47
(from redmine: issue id 8173, created on 2017-11-17, closed on 2018-01-05)
- Relations:
- parent #8169 (closed)