net/snmp
1. Summary
Updated ESX patches address an issue loading corrupt
virtual disks and update Service Console packages
for net-snmp and libxml2.
2. Relevant releases
VMware ESXi 3.5 without patch ESXe350-200901401-I-SG
- -------------------------------------------------------------------------
VMware Security Advisory
Advisory ID: VMSA-2010-0003
Synopsis: ESX Service Console update for net-snmp
Issue date: 2010-02-16
Updated on: 2010-02-16 (initial release of advisory)
CVE numbers: CVE-2009-1887
- -------------------------------------------------------------------------
- -------------------------------------------------------------------
~ VMware Security Advisory
Advisory ID: VMSA-2008-0007
Synopsis: Moderate Updated Service Console packages pcre
~ net-snmp, and OpenPegasus
Issue date: 2008-04-15
Updated on: 2008-04-15 (initial release of advisory)
CVE numbers: CVE-2006-7228 CVE-2007-1660 CVE-2007-5846
~ CVE-2008-0003
- -------------------------------------------------------------------
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: Normal
Title: Net-SNMP: Multiple vulnerabilities
Date: August 06, 2008
Bugs: #222265, #225105
ID: 200808-02
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: Normal
Title: net-snmp: Authorization bypass
Date: January 13, 2010
Bugs: #250429
ID: 201001-05
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: Normal
Title: Net-SNMP: Denial of Service
Date: November 20, 2007
Bugs: #198346
ID: 200711-31
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Mandriva Linux Security Advisory MDVSA-2008:118
http://www.mandriva.com/security/
_______________________________________________________________________
Package : net-snmp
Date : June 19, 2008
Affected: 2007.1, 2008.0, 2008.1, Corporate 3.0, Corporate 4.0,
Multi Network Firewall 2.0
_______________________________________________________________________
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: Normal
Title: Net-SNMP: Denial of Service
Date: January 21, 2009
Bugs: #245306
ID: 200901-15
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
The authentication code reads the length to be checked from sender input,
this allows the sender to supply single byte HMAC code and have a 1 in 256
chance of matching the correct HMAC and authenticating, as only the first
byte will be checked. The sender would need to know a valid username.
Currently Net-SNMP and UCD-SNMP are known to be vulnerable, other SNMP
implementations may also be affected. The eCos project includes code derived
from UCD-SNMP and is therefore also affected.
Affected version:
- ------------------------------------------------------------------------
VMware Security Advisory
Advisory ID: VMSA-2008-0013
Synopsis: Updated ESX packages for OpenSSL, net-snmp, perl
Issue date: 2008-08-12
Updated on: 2008-08-12 (initial release of advisory)
CVE numbers: CVE-2007-3108, CVE-2007-5135, CVE-2008-2292,
CVE-2008-0960, CVE-2008-1927
- ------------------------------------------------------------------------
Core Security Technologies sends and encripted draft of this advisory
to Juergen Schoenwaelder and Vincent Bernat, with apologies due to the
delay caused by Pedro Varangot
[http://corelabs.coresecurity.com/index.php?module=Wiki&action=view&type=researcher&name=Pedro_Varangot]
being on leave due to health issues. The advisory draft mentions
Net-SNMP as possible vulnerabile software.
. 2010-09-11:
Juergen Schoenwaelder replies with a patch fixing the vulnerability,
and correcting some tecnical information in the advisory draft
regarding the impact of the vulnerability, stating that it is likely
Debian Security Advisory DSA-1483-1 security@debian.org
http://www.debian.org/security/ Noah Meyerhans
February 06, 2008 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : net-snmp
Vulnerability : design error
Problem type : remote
Debian-specific: no
CVE Id(s) : CVE-2007-5846
Mandriva Linux Security Advisory MDVSA-2009:056
http://www.mandriva.com/security/
_______________________________________________________________________
Package : net-snmp
Date : February 25, 2009
Affected: 2009.0
_______________________________________________________________________
Problem Description:
Mandriva Linux Security Advisory MDVSA-2009:156
http://www.mandriva.com/security/
_______________________________________________________________________
Package : net-snmp
Date : July 19, 2009
Affected: Corporate 3.0, Multi Network Firewall 2.0
_______________________________________________________________________
Problem Description:
Mandriva Linux Security Advisory MDVSA-2009:056
http://www.mandriva.com/security/
_______________________________________________________________________
Package : net-snmp
Date : February 25, 2009
Affected: 2009.0
_______________________________________________________________________
Problem Description:
Mandriva Linux Security Advisory MDKSA-2007:225
http://www.mandriva.com/security/
_______________________________________________________________________
Package : net-snmp
Date : November 19, 2007
Affected: 2007.0, 2007.1, Corporate 3.0, Corporate 4.0,
Multi Network Firewall 2.0
_______________________________________________________________________
===========================================================
Ubuntu Security Notice USN-685-1 December 03, 2008
net-snmp vulnerabilities
CVE-2008-0960, CVE-2008-2292, CVE-2008-4309
===========================================================
A security issue affects the following Ubuntu releases:
Ubuntu 6.06 LTS
Ubuntu 7.10
Debian Security Advisory DSA-1663-1 security@debian.org
http://www.debian.org/security/ Thijs Kinkhorst
November 09, 2008 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : net-snmp
Vulnerability : several
Problem type : local (remote)
Debian-specific: no
CVE Id(s) : CVE-2008-0960 CVE-2008-2292 CVE-2008-4309
Debian Bugs : 485945 482333 504150
===========================================================
Ubuntu Security Notice USN-564-1 January 09, 2008
net-snmp vulnerability
CVE-2007-5846
===========================================================
A security issue affects the following Ubuntu releases:
Ubuntu 6.06 LTS
Ubuntu 6.10
Cisco is not aware of any malicious exploitation of these
vulnerabilities.
These vulnerabilities were reported to Cisco by Dr. Tom Dunigan of
the University of Tennessee and Net-SNMP in cooperation with the CERT
Coordination Center.
Status of this Notice: FINAL
============================
This update provides Wireshark 0.99.7 which is not vulnerable to
these issues.
An updated version of libsmi is also being provided, not because
of security issues, but because this version of wireshark uses it
instead of net-snmp for SNMP support.
Update:
This update is being reissued without libcap (kernel capabilities)
support, as that is not required by the original released packages,
I just finished testing my latest code, it's a patch for Net-SNMP
5.4.1.1 that allow you to exploit the CVE-2008-0960 for bypass the HMAC
validation on SNMP v3 (multiple vendor affected).
You can download it at:
http://lab.mediaservice.net/code.php#snmpv3
inode
--
Rating: Major
Exposure Level Classification:
Remote User Deterministic Denial of Service
Updated Versions:
net-snmp=conary.rpath.com@rpl:1/5.2.1.2-4.8-1
net-snmp=conary.rpath.com@rpl:2/5.4.1-5.1-1
net-snmp-client=conary.rpath.com@rpl:2/5.4.1-5.1-1
net-snmp-server=conary.rpath.com@rpl:2/5.4.1-5.1-1
net-snmp-utils=conary.rpath.com@rpl:1/5.2.1.2-4.8-1
This update rovides Wireshark 0.99.7 which is not vulnerable to
these issues.
An updated version of libsmi is also being provided, not because
of security issues, but because this version of wireshark uses it
instead of net-snmp for SNMP support.
_______________________________________________________________________
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6111
===========================================================
Ubuntu Security Notice USN-946-1 June 02, 2010
net-snmp vulnerability
CVE-2008-6123
===========================================================
A security issue affects the following Ubuntu releases:
Ubuntu 10.04 LTS
|
