QID 356763
Date Published: 2023-12-06
QID 356763: Amazon Linux Security Advisory for net-snmp : ALAS2-2023-2366
A flaw was found in net-snmp.
A buffer overflow in the handling of the index of net-snmp-vacm-mib can cause an out-of-bounds memory access issue. (
( CVE-2022-24805) a flaw was found in net-snmp.
This issue occurs due to improper input validation when simultaneously setting malformed oids in the master agent and subagent. (
( CVE-2022-24806) a flaw was found in net-snmp.
A malformed oid in a set request to the snmp-view-based-acm-mib::vacmaccesstable can cause an out-of-bounds memory access issue. (
( CVE-2022-24807) a flaw was found in net-snmp.
A malformed oid in a set request to net-snmp-ag ent-mib::nslogtable can cause a null pointer dereference issue. (
( CVE-2022-24808) a flaw was found in net-snmp.
A malformed oid in a get-next to the nsvacmaccesstable can cause a null pointer dereference issue. (
( CVE-2022-24809) a flaw was found in net-snmp.
A malformed oid in a set to the nsvacmaccesstable can cause a null pointer dereference issue. (
( CVE-2022-24810)
Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.
Successful exploitation of this vulnerability could lead to a securitybreach or could affect integrity, availability, and confidentiality.
- ALAS2-2023-2366 -
alas.aws.amazon.com/AL2/ALAS-2023-2366.html
CVEs related to QID 356763
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| ALAS2-2023-2366 | amazon linux 2 |
alas.aws.amazon.com/AL2/ALAS-2023-2366.html |