Debian 10224 Published by

A net-snmp security update has been released for Debian GNU/Linux 11 to address an issue that could result in denial of service or the execution of arbitrary code.



DSA 5209-1: net-snmp security update



- -------------------------------------------------------------------------
Debian Security Advisory DSA-5209-1 security@debian.org
  https://www.debian.org/security/ Salvatore Bonaccorso
August 16, 2022   https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : net-snmp
CVE ID : CVE-2022-24805 CVE-2022-24806 CVE-2022-24807 CVE-2022-24808
CVE-2022-24809 CVE-2022-24810
Debian Bug : 1016139

Yu Zhang and Nanyu Zhong discovered several vulnerabilities in net-snmp,
a suite of Simple Network Management Protocol applications, which could
result in denial of service or the execution of arbitrary code.

For the stable distribution (bullseye), these problems have been fixed in
version 5.9+dfsg-4+deb11u1.

We recommend that you upgrade your net-snmp packages.

For the detailed security status of net-snmp please refer to its
security tracker page at:
  https://security-tracker.debian.org/tracker/net-snmp

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at:   https://www.debian.org/security/