Ubuntu
net-snmp package

Merge net-snmp from Debian unstable for kinetic

Bug #1987349 reported by Sergio Durigan Junior
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
net-snmp (Ubuntu)
Fix Released
High
Sergio Durigan Junior
Ubuntu ubuntu-22.08

Bug Description

Debian released a new minor update to net-snmp; this bug is meant to track the Ubuntu merge of the package.

Tags: needs-merge
Sergio Durigan Junior (sergiodj)
Changed in net-snmp (Ubuntu):
milestone: none → ubuntu-22.08
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package net-snmp - 5.9.3+dfsg-1ubuntu1

---------------
net-snmp (5.9.3+dfsg-1ubuntu1) kinetic; urgency=medium

  * Merge with Debian unstable (LP: #1987349). Remaining changes:
    - Add apport hook:
      + d/control: add dh-apport to Build-Depends
      + d/rules: install the apport hook via debhelper
      + d/source.apport: apport hook
  * Drop changes:
    - SECURITY UPDATE: Multiple security issus
      + debian/patches/CVE-2022-248xx-1.patch: fix bounds checking in
        NET-SNMP-AGENT-MIB, NET-SNMP-VACM-MIB, SNMP-VIEW-BASED-ACM-MIB,
        SNMP-USER-BASED-SM-MIB in agent/mibgroup/agent/nsLogging.c,
        agent/mibgroup/agent/nsVacmAccessTable.c,
        agent/mibgroup/mibII/vacm_vars.c, agent/mibgroup/snmpv3/usmUser.
      + debian/patches/CVE-2022-248xx-2.patch: recover SET status from
        delegated request in agent/snmp_agent.c.
      + CVE-2022-24805, CVE-2022-24806, CVE-2022-24807, CVE-2022-24808,
        CVE-2022-24809, CVE-2022-24810
      [ Incorporated upstream. ]

 -- Sergio Durigan Junior <email address hidden> Mon, 22 Aug 2022 19:37:48 -0400

Changed in net-snmp (Ubuntu):
status: In Progress → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.