Fedora has issued an advisory on March 13: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/5OIO2AJDLVDV5CQC774CAF6SNIXBFV6F/ The RedHat bug links the fix for CVE-2015-5621 (Bug 15712), so I'm guessing it was the wrong link, but hopefully they have a good patch for this in git. Mageia 5 and Mageia 6 are also affected.
Whiteboard: (none) => MGA6TOO
Assigning to all packagers collectively, since there is no registered maintainer for this package. CC'ing some committers.
Assignee: bugsquad => pkg-bugsCC: (none) => geiger.david68210, guillomovitch, mageia, marja11
It appears to be almost the same patch as before, but it looks like this previously fixed issue got unfixed when we updated to 5.7.3 (for Mageia 6) and removed the patch (so Mageia 5 is actually not affected). The patch from Fedora will need some rediffing work: https://src.fedoraproject.org/cgit/rpms/net-snmp.git/plain/net-snmp-5.7.3-CVE-2018-1000116.patch?id=a99b865945555ce6ebd876fdbe0e3802e4fe07e7
Status comment: (none) => Patch available from Fedora (needs rediffed)
Assignee: pkg-bugs => mageia
I've applied the given patch for mga6, and added the patch for cauldron. Suggested advisory: ======================== Updated net-snmp packages fix security vulnerabilities: A Heap corruption in snmp_pdu_parse function in snmplib/snmp_api.c was discovered (CVE-2018-1000116). References: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/5OIO2AJDLVDV5CQC774CAF6SNIXBFV6F/ https://bugzilla.redhat.com/show_bug.cgi?id=1552844 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000116 ======================== Updated packages in core/updates_testing: ======================== net-snmp-5.7.3-4.1.mga6 libnet-snmp30-5.7.3-4.1.mga6 libnet-snmp-devel-5.7.3-4.1.mga6 libnet-snmp-static-devel-5.7.3-4.1.mga6 net-snmp-utils-5.7.3-4.1.mga6 net-snmp-tkmib-5.7.3-4.1.mga6 net-snmp-mibs-5.7.3-4.1.mga6 net-snmp-trapd-5.7.3-4.1.mga6 perl-NetSNMP-5.7.3-4.1.mga6 python-netsnmp-5.7.3-4.1.mga6 net-snmp-debuginfo-5.7.3-4.1.mga6 Source RPMs: net-snmp-5.7.3-4.1.mga6.src.rpm
Assignee: mageia => qa-bugs
Status comment: Patch available from Fedora (needs rediffed) => (none)Version: Cauldron => 6Whiteboard: MGA6TOO => (none)
Procedure: bug 12236 comment 5
Keywords: (none) => has_procedure
Covering this one for Mageia 6 - 64 bits.
CC: (none) => tarazed25
No PoC available for this. Clean update: - lib64net-snmp-devel-5.7.3-4.1.mga6.x86_64 - lib64net-snmp-static-devel-5.7.3-4.1.mga6.x86_64 - lib64net-snmp30-5.7.3-4.1.mga6.x86_64 - net-snmp-5.7.3-4.1.mga6.x86_64 - net-snmp-mibs-5.7.3-4.1.mga6.x86_64 - net-snmp-trapd-5.7.3-4.1.mga6.x86_64 - net-snmp-utils-5.7.3-4.1.mga6.x86_64 - perl-NetSNMP-5.7.3-4.1.mga6.x86_64 - python-netsnmp-5.7.3-4.1.mga6.x86_64 https://en.wikipedia.org/wiki/Net-SNMP Summary of utilities: encode_keychange produce the KeyChange string for SNMPv3. snmptranslate translate MIB OID names between numeric and textual forms. snmpget communicates with a network entity using SNMP GET requests. snmpgetnext Communicates with a network entity using SNMP GETNEXT requests. snmpbulkget Communicates with a network entity using SNMP GETBULK requests. snmpwalk retrieve a subtree of management values using SNMP GETNEXT requests. snmpbulkwalk retrieve a subtree of management values using SNMP GETBULK requests. snmpset communicates with a network entity using SNMP SET requests. snmptrap Sends SNMP TRAP or INFORM notification messages. snmpd A SNMP agent that responds to SNMP requests for a given host. snmptrapd A SNMP daemon that listens for SNMP TRAPs or INFORMs and logs or acts upon them. snmptest communicates with a network entity using SNMP requests. mib2c A MIB conversion utility that can translate MIB structures into other forms, such as C-code tkmib a perl/Tk interactive graphical MIB browser for SNMP. Usage information is displayed when the application name is typed in a terminal. tkmib is not provided. $ sudo systemctl start snmpd $ systemctl status snmpd ● snmpd.service - Simple Network Management Protocol (SNMP) Daemon. Loaded: loaded (/usr/lib/systemd/system/snmpd.service; enabled; vendor preset Active: active (running) since Mon 2018-03-26 14:15:45 BST; 14s ago Main PID: 17476 (snmpd) CGroup: /system.slice/snmpd.service └─17476 /usr/sbin/snmpd -LS0-4d -f Referring to the procedure in bug 12236: $ snmpget -v2c -c public localhost system.sysDescr.0 SNMPv2-MIB::sysDescr.0 = STRING: Linux difda 4.14.25-server-1.mga6 #1 SMP Fri Mar 9 20:08:31 UTC 2018 x86_64 $ snmpwalk -v2c -c public localhost SNMPv2-MIB::sysDescr.0 = STRING: Linux difda 4.14.25-server-1.mga6 #1 SMP Fri Mar 9 20:08:31 UTC 2018 x86_64 SNMPv2-MIB::sysObjectID.0 = OID: NET-SNMP-MIB::netSnmpAgentOIDs.10 DISMAN-EVENT-MIB::sysUpTimeInstance = Timeticks: (21501) 0:03:35.01 SNMPv2-MIB::sysContact.0 = STRING: Root <root@localhost> (configure /etc/snmp/snmp.local.conf) SNMPv2-MIB::sysName.0 = STRING: difda ................... HOST-RESOURCES-MIB::hrSystemUptime.0 = Timeticks: (9000887) 1 day, 1:00:08.87 HOST-RESOURCES-MIB::hrSystemUptime.0 = No more variables left in this MIB View (It is past the end of the MIB tree) Giving this a clean bill of health.
Whiteboard: (none) => MGA6-64-OK
Advisory uploaded. Validating.
CC: (none) => sysadmin-bugsKeywords: (none) => advisory, validated_update
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2018-0185.html
Status: NEW => RESOLVEDResolution: (none) => FIXED
CC: (none) => gykahuq