CVE-2012-2141

Publication date 27 April 2012

Last updated 24 July 2024


Ubuntu priority

Array index error in the handle_nsExtendOutput2Table function in agent/mibgroup/agent/extend.c in Net-SNMP 5.7.1 allows remote authenticated users to cause a denial of service (out-of-bounds read and snmpd crash) via an SNMP GET request for an entry not in the extension table.

Status

No maintained releases are affected by this CVE.

Package Ubuntu Release Status
net-snmp 12.04 LTS precise
Fixed 5.4.3~dfsg-2.4ubuntu1.1
11.10 oneiric
Fixed 5.4.3~dfsg-2.2ubuntu1.1
11.04 natty
Fixed 5.4.3~dfsg-2ubuntu1.1
10.04 LTS lucid
Fixed 5.4.2.1~dfsg0ubuntu1-0ubuntu2.2
8.04 LTS hardy
Fixed 5.4.1~dfsg-4ubuntu4.4

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package Patch details
net-snmp

References

Related Ubuntu Security Notices (USN)

Other references