OSV-2025-162

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/net-snmp/OSV-2025-162.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2025-162
Published
2025-02-24T00:15:40.967551Z
Modified
2025-03-18T00:30:24.116747Z
Summary
Heap-buffer-overflow in snmp_in_options
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=398067543

Crash type: Heap-buffer-overflow READ 8
Crash state:
snmp_in_options
netsnmp_parse_args
snmp_parse_args_fuzzer.c
References

Affected packages

OSS-Fuzz / net-snmp

Package

Name
net-snmp
Purl
pkg:generic/net-snmp

Affected ranges

Type
GIT
Repo
https://github.com/net-snmp/net-snmp
Events
Introduced
a6d63f416b3fe3011a3d11559ddf29ecf01a1667
Fixed
2b3e0837830e14c7747ac1e175017c733d9d62b3
Fixed
f23617df54f4d09d346bbc3452528abe3cc7947e
Fixed
61325b5cae0e5b2243fc078c6da71924dad0fa11

Ecosystem specific 

{
    "severity": "MEDIUM"
}

Database specific

fixed_range

"b4d94476f02769a92be7d2122bc8926f39aa6980:f23617df54f4d09d346bbc3452528abe3cc7947e"

introduced_range

"1109b6fd408e1c8b03e6ccfdcbe70c2ad0412c13:f720ed11acffa6425694ee3ac5144035aa094716"

source

"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/net-snmp/OSV-2025-162.yaml"