* SECURITY UPDATE: Fix segmentation fault that happens when using the
snmpv3 protocol with snmpbulkget. (LP: #1877027)
- d/p/move-securityStateRef-into-free_securityStateRef.patch:
Consolidate the check of the securityStateRef pointer into the
free_securityStateRef function.
- d/p/prevent-snmpv3-bulkget-errors-double-free.patch:
Prevent snmpv3 bulkget errors from becoming resulting in a
double free.
- d/p/fix-usmStateReference-free.patch:
Fix typo on usm_free_usmStateReference from last patch.
- d/p/unexport-struct-usmStateReference.patch:
Unexport struct usmStateReference and to prevent ABI breakages,
since it will be necessary to add a reference count to it.
- d/p/introduce-refcount-usmStateReference.patch:
Introduce refcount in the struct usmStateReference, and adjust
code to properly use the field.
- CVE-2019-20892
This bug was fixed in the package net-snmp - 5.8+dfsg-2ubuntu3
---------------
net-snmp (5.8+dfsg-2ubuntu3) groovy; urgency=medium
* SECURITY UPDATE: Fix segmentation fault that happens when using the securityStateRe f-into- free_securitySt ateRef. patch: securityStateRe f function. snmpv3- bulkget- errors- double- free.patch: usmStateReferen ce-free. patch: usmStateReferen ce from last patch. struct- usmStateReferen ce.patch: refcount- usmStateReferen ce.patch:
snmpv3 protocol with snmpbulkget. (LP: #1877027)
- d/p/move-
Consolidate the check of the securityStateRef pointer into the
free_
- d/p/prevent-
Prevent snmpv3 bulkget errors from becoming resulting in a
double free.
- d/p/fix-
Fix typo on usm_free_
- d/p/unexport-
Unexport struct usmStateReference and to prevent ABI breakages,
since it will be necessary to add a reference count to it.
- d/p/introduce-
Introduce refcount in the struct usmStateReference, and adjust
code to properly use the field.
- CVE-2019-20892
-- Sergio Durigan Junior <email address hidden> Tue, 23 Jun 2020 14:37:42 -0400