Untitled

Get:1 Changelog for libsnmp-base (http://changelogs.ubuntu.com/changelogs/pool/main/n/net-snmp/net-snmp_5.7.2~dfsg-8.1ubuntu3.1/changelog) [76.8 kB]

net-snmp (5.7.2~dfsg-8.1ubuntu3.1) trusty-security; urgency=medium

 

  * SECURITY UPDATE: denial of service via crafted SNMP trap message

    - debian/patches/CVE-2014-3565.patch: handle variables with wrong types

      in snmplib/mib.c.

    - CVE-2014-3565

  * SECURITY UPDATE: denial of service and possible code execution via

    incompletely parsed varBind variables

    - debian/patches/CVE-2015-5621.patch: don't return incorrectly parsed

      varbinds in snmplib/snmp_api.c.

    - CVE-2015-5621

 

 -- Marc Deslauriers <marc.deslauriers@ubuntu.com>  Thu, 13 Aug 2015 10:27:24 -0400

 

(q to quit)