Oval Definition:oval:org.opensuse.security:def:51962
Revision Date:2022-12-13Version:1
Title:Security update for net-snmp (Moderate)
Description:

This update for net-snmp fixes the following issues:

Updated to version 5.9.3 (bsc#1201103, jsc#SLE-11203):

- CVE-2022-24805: Fixed a buffer overflow in the handling of the INDEX of NET-SNMP-VACM-MIB that can cause an out-of-bounds memory access. - CVE-2022-24809: Fixed a malformed OID in a GET-NEXT to the nsVacmAccessTable that can cause a NULL pointer dereference. - CVE-2022-24806: Fixed an improper Input Validation when SETing malformed OIDs in master agent and subagent simultaneously. - CVE-2022-24807: Fixed a malformed OID in a SET request to SNMP-VIEW-BASED-ACM-MIB::vacmAccessTable can cause an out-of-bounds memory access. - CVE-2022-24808: Fixed a malformed OID in a SET request to NET-SNMP-AGENT-MIB::nsLogTable can cause a NULL pointer dereference. - CVE-2022-24810: Fixed a malformed OID in a SET to the nsVacmAccessTable can cause a NULL pointer dereference.
Family:unixClass:patch
Status:Reference(s):1141688
1146065
1146068
1146111
1146115
1146123
1146211
1146212
1146213
1151781
1151782
1151783
1151784
1151785
1151786
1158880
1161167
1163102
1163103
1163104
1167152
1167816
1168140
1168142
1168143
1169392
1170940
1172205
1176343
1176344
1176345
1176346
1176347
1176348
1176349
1176350
1178512
1188891
1189547
1190269
1190274
1201103
CVE-2009-3939
CVE-2009-4026
CVE-2009-4027
CVE-2009-4131
CVE-2009-4138
CVE-2009-4536
CVE-2009-4538
CVE-2010-1146
CVE-2010-1436
CVE-2010-1641
CVE-2010-2066
CVE-2010-2942
CVE-2010-2954
CVE-2010-2955
CVE-2010-3081
CVE-2010-3296
CVE-2010-3297
CVE-2010-3298
CVE-2010-3301
CVE-2010-3310
CVE-2011-0712
CVE-2011-1020
CVE-2011-1577
CVE-2011-2203
CVE-2011-2513
CVE-2011-2514
CVE-2011-3200
CVE-2011-3377
CVE-2011-4349
CVE-2012-0056
CVE-2012-1616
CVE-2012-2372
CVE-2012-3422
CVE-2012-3423
CVE-2012-4540
CVE-2013-0160
CVE-2013-0231
CVE-2013-0913
CVE-2013-1926
CVE-2013-1927
CVE-2013-1985
CVE-2013-2062
CVE-2013-2492
CVE-2013-2850
CVE-2013-4349
CVE-2013-4587
CVE-2013-4758
CVE-2013-6367
CVE-2013-6368
CVE-2013-6370
CVE-2013-6371
CVE-2013-6376
CVE-2014-00691
CVE-2014-0102
CVE-2014-0131
CVE-2014-0196
CVE-2014-2523
CVE-2014-3534
CVE-2014-3634
CVE-2014-3683
CVE-2014-3917
CVE-2014-3940
CVE-2014-4171
CVE-2014-4652
CVE-2014-4653
CVE-2014-4654
CVE-2014-4655
CVE-2014-4656
CVE-2014-4699
CVE-2014-4943
CVE-2014-5045
CVE-2014-5077
CVE-2014-5206
CVE-2014-5207
CVE-2014-5471
CVE-2014-5472
CVE-2015-5234
CVE-2015-5235
CVE-2019-14809
CVE-2019-14980
CVE-2019-14981
CVE-2019-15139
CVE-2019-15140
CVE-2019-15141
CVE-2019-15604
CVE-2019-15605
CVE-2019-15606
CVE-2019-16708
CVE-2019-16709
CVE-2019-16710
CVE-2019-16711
CVE-2019-16712
CVE-2019-16713
CVE-2019-9512
CVE-2019-9514
CVE-2020-0543
CVE-2020-0569
CVE-2020-11739
CVE-2020-11740
CVE-2020-11741
CVE-2020-11742
CVE-2020-11743
CVE-2020-1983
CVE-2020-25595
CVE-2020-25596
CVE-2020-25597
CVE-2020-25599
CVE-2020-25600
CVE-2020-25601
CVE-2020-25603
CVE-2020-25604
CVE-2020-28196
CVE-2021-29980
CVE-2021-29981
CVE-2021-29982
CVE-2021-29983
CVE-2021-29984
CVE-2021-29985
CVE-2021-29986
CVE-2021-29987
CVE-2021-29988
CVE-2021-29989
CVE-2021-29990
CVE-2021-29991
CVE-2021-38492
CVE-2021-38495
CVE-2022-24805
CVE-2022-24806
CVE-2022-24807
CVE-2022-24808
CVE-2022-24809
CVE-2022-24810
SUSE-SU-2019:2213-1
SUSE-SU-2019:2896-1
SUSE-SU-2020:0349-1
SUSE-SU-2020:0455-1
SUSE-SU-2020:1502-1
SUSE-SU-2020:2789-1
SUSE-SU-2020:3377-1
SUSE-SU-2021:3191-1
SUSE-SU-2022:4205-2
Platform(s):openSUSE Leap 15.0
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Micro 5.3
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Module for Web Scripting 15
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 15
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND dracut-044.1-lp150.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND usbmuxd-1.0.7-5.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • libtidy-1.0-37 is installed
  • OR tidy-1.0-37 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • kernel-default-3.12.28-4 is installed
  • OR kernel-default-devel-3.12.28-4 is installed
  • OR kernel-default-extra-3.12.28-4 is installed
  • OR kernel-devel-3.12.28-4 is installed
  • OR kernel-macros-3.12.28-4 is installed
  • OR kernel-source-3.12.28-4 is installed
  • OR kernel-syms-3.12.28-4 is installed
  • OR kernel-xen-3.12.28-4 is installed
  • OR kernel-xen-devel-3.12.28-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND argyllcms-1.6.3-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • colord-1.3.3-10 is installed
  • OR colord-gtk-lang-0.1.26-6 is installed
  • OR colord-lang-1.3.3-10 is installed
  • OR libcolord-gtk1-0.1.26-6 is installed
  • OR libcolord2-1.3.3-10 is installed
  • OR libcolord2-32bit-1.3.3-10 is installed
  • OR libcolorhug2-1.3.3-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • java-1_7_0-openjdk-plugin-1.6.2-2.8 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.2-2.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • ghostscript-9.25-23.13 is installed
  • OR ghostscript-x11-9.25-23.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Micro 5.3 is installed
  • AND Package Information
  • libsnmp40-5.9.3-150300.15.3.1 is installed
  • OR snmp-mibs-5.9.3-150300.15.3.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • go1.11-1.11.13-1.18 is installed
  • OR go1.11-doc-1.11.13-1.18 is installed
  • OR go1.11-race-1.11.13-1.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • qemu-3.1.1.1-9.21 is installed
  • OR qemu-arm-3.1.1.1-9.21 is installed
  • OR qemu-audio-alsa-3.1.1.1-9.21 is installed
  • OR qemu-audio-oss-3.1.1.1-9.21 is installed
  • OR qemu-audio-pa-3.1.1.1-9.21 is installed
  • OR qemu-block-curl-3.1.1.1-9.21 is installed
  • OR qemu-block-iscsi-3.1.1.1-9.21 is installed
  • OR qemu-block-rbd-3.1.1.1-9.21 is installed
  • OR qemu-block-ssh-3.1.1.1-9.21 is installed
  • OR qemu-guest-agent-3.1.1.1-9.21 is installed
  • OR qemu-ipxe-1.0.0+-9.21 is installed
  • OR qemu-kvm-3.1.1.1-9.21 is installed
  • OR qemu-lang-3.1.1.1-9.21 is installed
  • OR qemu-ppc-3.1.1.1-9.21 is installed
  • OR qemu-s390-3.1.1.1-9.21 is installed
  • OR qemu-seabios-1.12.0-9.21 is installed
  • OR qemu-sgabios-8-9.21 is installed
  • OR qemu-ui-curses-3.1.1.1-9.21 is installed
  • OR qemu-ui-gtk-3.1.1.1-9.21 is installed
  • OR qemu-vgabios-1.12.0-9.21 is installed
  • OR qemu-x86-3.1.1.1-9.21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
  • AND Package Information
  • krb5-1.16.3-3.15 is installed
  • OR krb5-plugin-kdb-ldap-1.16.3-3.15 is installed
  • OR krb5-server-1.16.3-3.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 is installed
  • AND Package Information
  • nodejs10-10.19.0-1.18 is installed
  • OR nodejs10-devel-10.19.0-1.18 is installed
  • OR nodejs10-docs-10.19.0-1.18 is installed
  • OR npm10-10.19.0-1.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • libpython2_7-1_0-2.7.9-20 is installed
  • OR libpython2_7-1_0-32bit-2.7.9-20 is installed
  • OR python-base-2.7.9-20 is installed
  • OR python-base-32bit-2.7.9-20 is installed
  • OR python-xml-2.7.9-20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND sudo-1.8.10p3-2.28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • cups-pk-helper-0.2.5-3 is installed
  • OR cups-pk-helper-lang-0.2.5-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libopenssl-devel-1.0.2j-60.30 is installed
  • OR libopenssl1_0_0-1.0.2j-60.30 is installed
  • OR libopenssl1_0_0-32bit-1.0.2j-60.30 is installed
  • OR libopenssl1_0_0-hmac-1.0.2j-60.30 is installed
  • OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.30 is installed
  • OR openssl-1.0.2j-60.30 is installed
  • OR openssl-doc-1.0.2j-60.30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND clamav-0.100.1-33.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_114-92_67-default-5-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_19-5-2 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND
  • kernel-default-4.4.180-94.100 is installed
  • OR kernel-default-base-4.4.180-94.100 is installed
  • OR kernel-default-devel-4.4.180-94.100 is installed
  • OR kernel-default-man-4.4.180-94.100 is installed
  • OR kernel-devel-4.4.180-94.100 is installed
  • OR kernel-macros-4.4.180-94.100 is installed
  • OR kernel-source-4.4.180-94.100 is installed
  • OR kernel-syms-4.4.180-94.100 is installed
  • OR kgraft-patch-4_4_180-94_100-default-1-4.3 is installed
  • OR kgraft-patch-SLE12-SP3_Update_27-1-4.3 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND
  • kernel-default-4.4.180-94.100 is installed
  • OR kernel-default-base-4.4.180-94.100 is installed
  • OR kernel-default-devel-4.4.180-94.100 is installed
  • OR kernel-default-man-4.4.180-94.100 is installed
  • OR kernel-devel-4.4.180-94.100 is installed
  • OR kernel-macros-4.4.180-94.100 is installed
  • OR kernel-source-4.4.180-94.100 is installed
  • OR kernel-syms-4.4.180-94.100 is installed
  • OR kgraft-patch-4_4_180-94_100-default-1-4.3 is installed
  • OR kgraft-patch-SLE12-SP3_Update_27-1-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • apache2-mod_apparmor-2.8.2-49 is installed
  • OR apparmor-docs-2.8.2-49 is installed
  • OR apparmor-parser-2.8.2-49 is installed
  • OR apparmor-profiles-2.8.2-49 is installed
  • OR apparmor-utils-2.8.2-49 is installed
  • OR libapparmor1-2.8.2-49 is installed
  • OR libapparmor1-32bit-2.8.2-49 is installed
  • OR pam_apparmor-2.8.2-49 is installed
  • OR pam_apparmor-32bit-2.8.2-49 is installed
  • OR perl-apparmor-2.8.2-49 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libshibsp-lite6-2.5.5-6.6 is installed
  • OR libshibsp6-2.5.5-6.6 is installed
  • OR shibboleth-sp-2.5.5-6.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • libopenssl-devel-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed
  • OR openssl-1.0.2j-60.55 is installed
  • OR openssl-doc-1.0.2j-60.55 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_162-94_69-default-6-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_21-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • gdm-3.10.0.1-54.6 is installed
  • OR gdm-lang-3.10.0.1-54.6 is installed
  • OR gdmflexiserver-3.10.0.1-54.6 is installed
  • OR libgdm1-3.10.0.1-54.6 is installed
  • OR typelib-1_0-Gdm-1_0-3.10.0.1-54.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • apache2-2.4.23-29.24 is installed
  • OR apache2-doc-2.4.23-29.24 is installed
  • OR apache2-example-pages-2.4.23-29.24 is installed
  • OR apache2-prefork-2.4.23-29.24 is installed
  • OR apache2-utils-2.4.23-29.24 is installed
  • OR apache2-worker-2.4.23-29.24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • xen-4.10.4_10-3.31 is installed
  • OR xen-devel-4.10.4_10-3.31 is installed
  • OR xen-libs-4.10.4_10-3.31 is installed
  • OR xen-tools-4.10.4_10-3.31 is installed
  • OR xen-tools-domU-4.10.4_10-3.31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
  • AND Package Information
  • MozillaFirefox-91.1.0-112.71.1 is installed
  • OR MozillaFirefox-branding-SLE-91-35.6.6 is installed
  • OR MozillaFirefox-devel-91.1.0-112.71.1 is installed
  • OR MozillaFirefox-translations-common-91.1.0-112.71.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • xen-4.10.4_16-3.41 is installed
  • OR xen-devel-4.10.4_16-3.41 is installed
  • OR xen-libs-4.10.4_16-3.41 is installed
  • OR xen-tools-4.10.4_16-3.41 is installed
  • OR xen-tools-domU-4.10.4_16-3.41 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.151-27.8 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.151-27.8 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.151-27.8 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.151-27.8 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • kernel-default-4.4.121-92.95 is installed
  • OR kernel-default-base-4.4.121-92.95 is installed
  • OR kernel-default-devel-4.4.121-92.95 is installed
  • OR kernel-default-man-4.4.121-92.95 is installed
  • OR kernel-devel-4.4.121-92.95 is installed
  • OR kernel-macros-4.4.121-92.95 is installed
  • OR kernel-source-4.4.121-92.95 is installed
  • OR kernel-syms-4.4.121-92.95 is installed
  • OR kgraft-patch-4_4_121-92_95-default-1-3.4 is installed
  • OR kgraft-patch-SLE12-SP2_Update_25-1-3.4 is installed
  • OR lttng-modules-2.7.1-9.6 is installed
  • OR lttng-modules-kmp-default-2.7.1_k4.4.121_92.95-9.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • kafka-0.10.2.2-5.6 is installed
  • OR openstack-monasca-api-2.2.1~dev24-3.6 is installed
  • OR python-monasca-api-2.2.1~dev24-3.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-Werkzeug-0.14.1-3.3 is installed
    • BACK