CVE-2022-24807
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-24807
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-24807.json
- Related
- Published
- 2024-04-16T20:15:08Z
- Modified
- 2024-04-17T15:03:22.717601Z
- Details
-
net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a malformed OID in a SET request to
SNMP-VIEW-BASED-ACM-MIB::vacmAccessTablecan cause an out-of-bounds memory access. A user with read-write credentials can exploit the issue. Version 5.9.2 contains a patch. Users should use strong SNMPv3 credentials and avoid sharing the credentials. Those who must use SNMPv1 or SNMPv2c should use a complex community string and enhance the protection by restricting access to a given IP address range. - References
-
- https://security.gentoo.org/glsa/202210-29
- https://www.debian.org/security/2022/dsa-5209
- https://github.com/net-snmp/net-snmp/commit/67ebb43e9038b2dae6e74ae8838b36fcc10fc937
- https://github.com/net-snmp/net-snmp/commit/ce66eb97c17aa9a48bc079be7b65895266fa6775
- https://bugzilla.redhat.com/show_bug.cgi?id=2103225
- https://bugzilla.redhat.com/show_bug.cgi?id=2105239
- https://lists.debian.org/debian-lts-announce/2022/08/msg00020.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FX75KKGMO5XMV6JMQZF6KOG3JPFNQBY7/
Affected packages
Alpine:v3.13 / net-snmp
Package
- Name
- net-snmp
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0The exact introduced commit is unknownFixed5.9.3-r0
Affected versions
5.*
5.4.2.1-r0
5.4.2.1-r1
5.4.2.1-r2
5.4.2.1-r3
5.4.2.1-r4
5.5-r0
5.5-r1
5.5-r2
5.5-r3
5.5-r4
5.5-r5
5.6.1-r0
5.6.1-r1
5.6.1-r2
5.7-r0
5.7.1-r0
5.7.1-r1
5.7.1-r2
5.7.1-r3
5.7.1-r4
5.7.1-r5
5.7.1-r6
5.7.1-r7
5.7.2-r0
5.7.2-r1
5.7.2-r2
5.7.2.1-r0
5.7.2.1-r1
5.7.2.1-r2
5.7.2.1-r3
5.7.2.1-r4
5.7.3-r0
5.7.3-r1
5.7.3-r2
5.7.3-r3
5.7.3-r4
5.7.3-r5
5.7.3-r6
5.7.3-r7
5.7.3-r8
5.7.3-r9
5.7.3-r10
5.7.3-r11
5.8-r0
5.8-r1
5.8-r2
5.8-r3
5.9-r0
5.9-r1
5.9-r2
5.9-r3
Alpine:v3.14 / net-snmp
Package
- Name
- net-snmp
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0The exact introduced commit is unknownFixed5.9.3-r0
Affected versions
5.*
5.4.2.1-r0
5.4.2.1-r1
5.4.2.1-r2
5.4.2.1-r3
5.4.2.1-r4
5.5-r0
5.5-r1
5.5-r2
5.5-r3
5.5-r4
5.5-r5
5.6.1-r0
5.6.1-r1
5.6.1-r2
5.7-r0
5.7.1-r0
5.7.1-r1
5.7.1-r2
5.7.1-r3
5.7.1-r4
5.7.1-r5
5.7.1-r6
5.7.1-r7
5.7.2-r0
5.7.2-r1
5.7.2-r2
5.7.2.1-r0
5.7.2.1-r1
5.7.2.1-r2
5.7.2.1-r3
5.7.2.1-r4
5.7.3-r0
5.7.3-r1
5.7.3-r2
5.7.3-r3
5.7.3-r4
5.7.3-r5
5.7.3-r6
5.7.3-r7
5.7.3-r8
5.7.3-r9
5.7.3-r10
5.7.3-r11
5.8-r0
5.8-r1
5.8-r2
5.8-r3
5.9-r0
5.9-r1
5.9-r2
5.9-r3
5.9-r4
Alpine:v3.15 / net-snmp
Package
- Name
- net-snmp
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0The exact introduced commit is unknownFixed5.9.3-r0
Affected versions
5.*
5.4.2.1-r0
5.4.2.1-r1
5.4.2.1-r2
5.4.2.1-r3
5.4.2.1-r4
5.5-r0
5.5-r1
5.5-r2
5.5-r3
5.5-r4
5.5-r5
5.6.1-r0
5.6.1-r1
5.6.1-r2
5.7-r0
5.7.1-r0
5.7.1-r1
5.7.1-r2
5.7.1-r3
5.7.1-r4
5.7.1-r5
5.7.1-r6
5.7.1-r7
5.7.2-r0
5.7.2-r1
5.7.2-r2
5.7.2.1-r0
5.7.2.1-r1
5.7.2.1-r2
5.7.2.1-r3
5.7.2.1-r4
5.7.3-r0
5.7.3-r1
5.7.3-r2
5.7.3-r3
5.7.3-r4
5.7.3-r5
5.7.3-r6
5.7.3-r7
5.7.3-r8
5.7.3-r9
5.7.3-r10
5.7.3-r11
5.8-r0
5.8-r1
5.8-r2
5.8-r3
5.9-r0
5.9-r1
5.9-r2
5.9-r3
5.9-r4
5.9.1-r0
5.9.1-r1
5.9.1-r2
5.9.1-r3
5.9.1-r4
5.9.1-r5
Alpine:v3.16 / net-snmp
Package
- Name
- net-snmp
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0The exact introduced commit is unknownFixed5.9.3-r0
Affected versions
5.*
5.4.2.1-r0
5.4.2.1-r1
5.4.2.1-r2
5.4.2.1-r3
5.4.2.1-r4
5.5-r0
5.5-r1
5.5-r2
5.5-r3
5.5-r4
5.5-r5
5.6.1-r0
5.6.1-r1
5.6.1-r2
5.7-r0
5.7.1-r0
5.7.1-r1
5.7.1-r2
5.7.1-r3
5.7.1-r4
5.7.1-r5
5.7.1-r6
5.7.1-r7
5.7.2-r0
5.7.2-r1
5.7.2-r2
5.7.2.1-r0
5.7.2.1-r1
5.7.2.1-r2
5.7.2.1-r3
5.7.2.1-r4
5.7.3-r0
5.7.3-r1
5.7.3-r2
5.7.3-r3
5.7.3-r4
5.7.3-r5
5.7.3-r6
5.7.3-r7
5.7.3-r8
5.7.3-r9
5.7.3-r10
5.7.3-r11
5.8-r0
5.8-r1
5.8-r2
5.8-r3
5.9-r0
5.9-r1
5.9-r2
5.9-r3
5.9-r4
5.9.1-r0
5.9.1-r1
5.9.1-r2
5.9.1-r3
5.9.1-r4
5.9.1-r5
5.9.1-r6
Alpine:v3.17 / net-snmp
Package
- Name
- net-snmp
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0The exact introduced commit is unknownFixed5.9.3-r0
Affected versions
5.*
5.4.2.1-r0
5.4.2.1-r1
5.4.2.1-r2
5.4.2.1-r3
5.4.2.1-r4
5.5-r0
5.5-r1
5.5-r2
5.5-r3
5.5-r4
5.5-r5
5.6.1-r0
5.6.1-r1
5.6.1-r2
5.7-r0
5.7.1-r0
5.7.1-r1
5.7.1-r2
5.7.1-r3
5.7.1-r4
5.7.1-r5
5.7.1-r6
5.7.1-r7
5.7.2-r0
5.7.2-r1
5.7.2-r2
5.7.2.1-r0
5.7.2.1-r1
5.7.2.1-r2
5.7.2.1-r3
5.7.2.1-r4
5.7.3-r0
5.7.3-r1
5.7.3-r2
5.7.3-r3
5.7.3-r4
5.7.3-r5
5.7.3-r6
5.7.3-r7
5.7.3-r8
5.7.3-r9
5.7.3-r10
5.7.3-r11
5.8-r0
5.8-r1
5.8-r2
5.8-r3
5.9-r0
5.9-r1
5.9-r2
5.9-r3
5.9-r4
5.9.1-r0
5.9.1-r1
5.9.1-r2
5.9.1-r3
5.9.1-r4
5.9.1-r5
5.9.1-r6
5.9.1-r7
Alpine:v3.18 / net-snmp
Package
- Name
- net-snmp
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0The exact introduced commit is unknownFixed5.9.3-r0
Affected versions
5.*
5.4.2.1-r0
5.4.2.1-r1
5.4.2.1-r2
5.4.2.1-r3
5.4.2.1-r4
5.5-r0
5.5-r1
5.5-r2
5.5-r3
5.5-r4
5.5-r5
5.6.1-r0
5.6.1-r1
5.6.1-r2
5.7-r0
5.7.1-r0
5.7.1-r1
5.7.1-r2
5.7.1-r3
5.7.1-r4
5.7.1-r5
5.7.1-r6
5.7.1-r7
5.7.2-r0
5.7.2-r1
5.7.2-r2
5.7.2.1-r0
5.7.2.1-r1
5.7.2.1-r2
5.7.2.1-r3
5.7.2.1-r4
5.7.3-r0
5.7.3-r1
5.7.3-r2
5.7.3-r3
5.7.3-r4
5.7.3-r5
5.7.3-r6
5.7.3-r7
5.7.3-r8
5.7.3-r9
5.7.3-r10
5.7.3-r11
5.8-r0
5.8-r1
5.8-r2
5.8-r3
5.9-r0
5.9-r1
5.9-r2
5.9-r3
5.9-r4
5.9.1-r0
5.9.1-r1
5.9.1-r2
5.9.1-r3
5.9.1-r4
5.9.1-r5
5.9.1-r6
5.9.1-r7
Alpine:v3.19 / net-snmp
Package
- Name
- net-snmp
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0The exact introduced commit is unknownFixed5.9.3-r0
Affected versions
5.*
5.4.2.1-r0
5.4.2.1-r1
5.4.2.1-r2
5.4.2.1-r3
5.4.2.1-r4
5.5-r0
5.5-r1
5.5-r2
5.5-r3
5.5-r4
5.5-r5
5.6.1-r0
5.6.1-r1
5.6.1-r2
5.7-r0
5.7.1-r0
5.7.1-r1
5.7.1-r2
5.7.1-r3
5.7.1-r4
5.7.1-r5
5.7.1-r6
5.7.1-r7
5.7.2-r0
5.7.2-r1
5.7.2-r2
5.7.2.1-r0
5.7.2.1-r1
5.7.2.1-r2
5.7.2.1-r3
5.7.2.1-r4
5.7.3-r0
5.7.3-r1
5.7.3-r2
5.7.3-r3
5.7.3-r4
5.7.3-r5
5.7.3-r6
5.7.3-r7
5.7.3-r8
5.7.3-r9
5.7.3-r10
5.7.3-r11
5.8-r0
5.8-r1
5.8-r2
5.8-r3
5.9-r0
5.9-r1
5.9-r2
5.9-r3
5.9-r4
5.9.1-r0
5.9.1-r1
5.9.1-r2
5.9.1-r3
5.9.1-r4
5.9.1-r5
5.9.1-r6
5.9.1-r7