Wind River Support Network

HomeDefectsLIN6-9937

Fixed

LIN6-9937 : CLONE - CLONE - net-snmp: snmp_pdu_parse() incompletely parsed varBinds left in list of variables

Created: May 28, 2015 Updated: Dec 3, 2018

Resolved Date: Jun 17, 2015

Previous ID: LIN5-20457

Found In Version: 6.0.0.20

Fix Version: 6.0.0.22

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Userspace

Description

It was discovered that the snmp_pdu_parse() function could leave incompletely parsed varBind variables in the list of variables. A remote, unauthenticated attacker could exploit this flaw to cause a crash or, potentially, execute arbitrary code.

bug link:
https://bugzilla.redhat.com/show_bug.cgi?id=1212408

Other Downloads

Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38