You are here
Home > Preporuke > Ranjivost programskog paketa net-snmp

Ranjivost programskog paketa net-snmp

  • Detalji os-a: FED
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2014-09-02 05:27:30

Name : net-snmp
Product : Fedora 19
Version : 5.7.2
Release : 15.fc19
Summary : A collection of SNMP protocol tools and libraries
Description :
SNMP (Simple Network Management Protocol) is a protocol used for
network management. The NET-SNMP project includes various SNMP tools:
an extensible agent, an SNMP library, tools for requesting or setting
information from SNMP agents, tools for generating and handling SNMP
traps, a version of the netstat command which uses SNMP, and a Tk/Perl
mib browser. This package contains the snmpd and snmptrapd daemons,
documentation, etc.

You will probably also want to install the net-snmp-utils package,
which contains NET-SNMP utilities.

Update Information:

Update package fixes following bugs:
* CVE-2014-3565 net-snmp: snmptrapd crash when handling an SNMP trap containing a ifMtu with a NULL type
* net-snmp-cert now works without net-snmp-devel package installed

* Mon Sep 1 2014 Jan Safranek <> – 1:5.7.2-15
– Fixed CVE-2014-3565
– Fixed net-snmp-cert tool, now it does not depend on net-snmp-devel (#1134475)
* Tue Mar 4 2014 Jan Safranek <> – 1:5.7.2-14
– Fixed buffer overflow in ICMP-MIB (#1071753)
* Thu Dec 5 2013 Jan Safranek <> – 1:5.7.2-13
– Fixed snmpd crashing when AgentX subagent disconnects in the middle of
request processing (#1038011)
* Tue May 21 2013 Jan Safranek <> – 1:5.7.2-12
– added btrfs support to hrFSTable (#965348)

[ 1 ] Bug #1125155 – CVE-2014-3565 net-snmp: snmptrapd crash when handling an SNMP trap containing a ifMtu with a NULL type

This update can be installed with the “yum” update program. Use
su -c ‘yum update net-snmp’ at the command line.
For more information, refer to “Managing Software with yum”,
available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list

AutorTomislav Protega
Cert idNCERT-REF-2014-09-0024-ADV
ID izvornikaFEDORA-2014-10099
More in Preporuke
Sigurnosna nadogradnja programskog paketa file

Izdana je zakrpa za Debianov programski paket file. Ovom zakrpom se ispravlja neispravan rad zakrpe izdane s preporukom oznake DSA...