Wind River Support Network

HomeDefectsLIN7-3955

Fixed

LIN7-3955 : CLONE - CLONE - CLONE - net-snmp: snmp_pdu_parse() incompletely parsed varBinds left in list of variables

Created: Jun 4, 2015 Updated: Sep 8, 2018

Resolved Date: Jun 7, 2015

Previous ID: LIN6-9972

Found In Version: 7.0.0.5

Fix Version: 7.0.0.7

Severity: Standard

Applicable for: Wind River Linux 7

Component/s: Userspace

Description

It was discovered that the snmp_pdu_parse() function could leave incompletely parsed varBind variables in the list of variables. A remote, unauthenticated attacker could exploit this flaw to cause a crash or, potentially, execute arbitrary code.

bug link:
https://bugzilla.redhat.com/show_bug.cgi?id=1212408

Other Downloads

Wind River Linux 7.0.0.14
Wind River Linux 7.0.0.15
Wind River Linux 7.0.0.16
Wind River Linux 7.0.0.17
Wind River Linux 7.0.0.18
Wind River Linux 7.0.0.19
Wind River Linux 7.0.0.20
Wind River Linux 7.0.0.21
Wind River Linux 7.0.0.22
Wind River Linux 7.0.0.23
Wind River Linux 7.0.0.24
Wind River Linux 7.0.0.25
Wind River Linux 7.0.0.26
Wind River Linux 7.0.0.27
Wind River Linux 7.0.0.28
Wind River Linux 7.0.0.29
Wind River Linux 7.0.0.30
Wind River Linux 7.0.0.31