FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-25 21:13:12 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
92f86b93-923f-11dc-a2bf-02e081235dab	net-snmp -- denial of service via GETBULK request CVE reports: The SNMP agent (snmp_agent.c) in net-snmp before 5.4.1 allows remote attackers to cause a denial of service (CPU and memory consumption) via a GETBULK request with a large max-repeaters value. Discovery 2007-11-06 Entry 2007-11-13 Modified 2007-11-14 net-snmp < 5.3.1_7 CVE-2007-5846
381183e8-3798-11e5-9970-14dae9d210b8	net-snmp -- snmp_pdu_parse() function incomplete initialization Qinghao Tang reports: Incompletely initialized vulnerability exists in the function âsnmp_pdu_parse()â of âsnmp_api.c', and remote attackers can cause memory leak, DOS and possible command executions by sending malicious packets. Discovery 2015-04-11 Entry 2015-07-31 net-snmp le 5.7.3_7 http://seclists.org/oss-sec/2015/q2/116 http://sourceforge.net/p/net-snmp/code/ci/f23bcd3ac6ddee5d0a48f9703007ccc738914791/ https://bugzilla.redhat.com/show_bug.cgi?id=1212408 CVE-2015-5621
5d85976a-9011-11e1-b5e0-000c299b62e1	net-snmp -- Remote DoS The Red Hat Security Response Team reports: An array index error, leading to out-of heap-based buffer read flaw was found in the way the net-snmp agent performed lookups in the extension table. When certain MIB subtrees were handled by the extend directive, a remote attacker (having read privileges to the subntree) could use this flaw to cause a denial of service condition via an SNMP GET request involving a non-existent extension table entry. Discovery 2012-04-26 Entry 2012-04-27 net-snmp < 5.7.1_7 CVE-2012-2141 https://bugzilla.redhat.com/show_bug.cgi?id=815813 http://www.openwall.com/lists/oss-security/2012/04/26/2

VuXML ID

Description

92f86b93-923f-11dc-a2bf-02e081235dab

net-snmp -- denial of service via GETBULK request

CVE reports:

The SNMP agent (snmp_agent.c) in net-snmp before 5.4.1 allows remote attackers to cause a denial of service (CPU and memory consumption) via a GETBULK request with a large max-repeaters value.

Discovery 2007-11-06
Entry 2007-11-13
Modified 2007-11-14
net-snmp

< 5.3.1_7

CVE-2007-5846

381183e8-3798-11e5-9970-14dae9d210b8

net-snmp -- snmp_pdu_parse() function incomplete initialization

Qinghao Tang reports:

Incompletely initialized vulnerability exists in the function âsnmp_pdu_parse()â of âsnmp_api.c', and remote attackers can cause memory leak, DOS and possible command executions by sending malicious packets.

Discovery 2015-04-11
Entry 2015-07-31
net-snmp

le 5.7.3_7

http://seclists.org/oss-sec/2015/q2/116
http://sourceforge.net/p/net-snmp/code/ci/f23bcd3ac6ddee5d0a48f9703007ccc738914791/
https://bugzilla.redhat.com/show_bug.cgi?id=1212408
CVE-2015-5621

5d85976a-9011-11e1-b5e0-000c299b62e1

net-snmp -- Remote DoS

The Red Hat Security Response Team reports:

An array index error, leading to out-of heap-based buffer read flaw was found in the way the net-snmp agent performed lookups in the extension table. When certain MIB subtrees were handled by the extend directive, a remote attacker (having read privileges to the subntree) could use this flaw to cause a denial of service condition via an SNMP GET request involving a non-existent extension table entry.

Discovery 2012-04-26
Entry 2012-04-27
net-snmp

< 5.7.1_7

CVE-2012-2141
https://bugzilla.redhat.com/show_bug.cgi?id=815813
http://www.openwall.com/lists/oss-security/2012/04/26/2