FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-18 11:12:36 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
4622635f-37a1-11e5-9970-14dae9d210b8	net-snmp -- snmptrapd crash Murray McAllister reports: A remote denial-of-service flaw was found in the way snmptrapd handled certain SNMP traps when started with the "-OQ" option. If an attacker sent an SNMP trap containing a variable with a NULL type where an integer variable type was expected, it would cause snmptrapd to crash. Discovery 2014-07-31 Entry 2015-07-31 net-snmp ge 5.7.0 le 5.7.2.1 ge 5.6.0 le 5.6.2.1 ge 5.5.0 le 5.5.2.1 ge 5.4.0 le 5.4.4 http://seclists.org/oss-sec/2014/q3/473 http://sourceforge.net/p/net-snmp/code/ci/7f4a7b891332899cea26e95be0337aae01648742/ https://sourceforge.net/p/net-snmp/official-patches/48/ CVE-2014-3565
381183e8-3798-11e5-9970-14dae9d210b8	net-snmp -- snmp_pdu_parse() function incomplete initialization Qinghao Tang reports: Incompletely initialized vulnerability exists in the function âsnmp_pdu_parse()â of âsnmp_api.c', and remote attackers can cause memory leak, DOS and possible command executions by sending malicious packets. Discovery 2015-04-11 Entry 2015-07-31 net-snmp le 5.7.3_7 http://seclists.org/oss-sec/2015/q2/116 http://sourceforge.net/p/net-snmp/code/ci/f23bcd3ac6ddee5d0a48f9703007ccc738914791/ https://bugzilla.redhat.com/show_bug.cgi?id=1212408 CVE-2015-5621

VuXML ID

Description

4622635f-37a1-11e5-9970-14dae9d210b8

net-snmp -- snmptrapd crash

Murray McAllister reports:

A remote denial-of-service flaw was found in the way snmptrapd handled certain SNMP traps when started with the "-OQ" option. If an attacker sent an SNMP trap containing a variable with a NULL type where an integer variable type was expected, it would cause snmptrapd to crash.

Discovery 2014-07-31
Entry 2015-07-31
net-snmp

ge 5.7.0 le 5.7.2.1

ge 5.6.0 le 5.6.2.1

ge 5.5.0 le 5.5.2.1

ge 5.4.0 le 5.4.4

http://seclists.org/oss-sec/2014/q3/473
http://sourceforge.net/p/net-snmp/code/ci/7f4a7b891332899cea26e95be0337aae01648742/
https://sourceforge.net/p/net-snmp/official-patches/48/
CVE-2014-3565

381183e8-3798-11e5-9970-14dae9d210b8

net-snmp -- snmp_pdu_parse() function incomplete initialization

Qinghao Tang reports:

Incompletely initialized vulnerability exists in the function âsnmp_pdu_parse()â of âsnmp_api.c', and remote attackers can cause memory leak, DOS and possible command executions by sending malicious packets.

Discovery 2015-04-11
Entry 2015-07-31
net-snmp

le 5.7.3_7

http://seclists.org/oss-sec/2015/q2/116
http://sourceforge.net/p/net-snmp/code/ci/f23bcd3ac6ddee5d0a48f9703007ccc738914791/
https://bugzilla.redhat.com/show_bug.cgi?id=1212408
CVE-2015-5621