SUSE update for net-snmp



Published: 2022-01-11
Risk Medium
Patch available YES
Number of vulnerabilities 2
CVE-ID CVE-2018-18065
CVE-2020-15862
CWE-ID CWE-476
CWE-732
Exploitation vector Network
Public exploit N/A
Vulnerable software
Subscribe 		SUSE Linux Enterprise Server for SAP
Operating systems & Components / Operating system

SUSE Linux Enterprise High Performance Computing
Operating systems & Components / Operating system

SUSE Enterprise Storage
Operating systems & Components / Operating system

SUSE CaaS Platform
Operating systems & Components / Operating system

SUSE Linux Enterprise Server
Operating systems & Components / Operating system

SUSE Linux Enterprise Module for Basesystem
Operating systems & Components / Operating system

SUSE Linux Enterprise Module for Packagehub Subpackages
Operating systems & Components / Operating system package or component

libsnmp30-32bit-debuginfo
Operating systems & Components / Operating system package or component

libsnmp30-32bit
Operating systems & Components / Operating system package or component

snmp-mibs
Operating systems & Components / Operating system package or component

perl-SNMP-debuginfo
Operating systems & Components / Operating system package or component

perl-SNMP
Operating systems & Components / Operating system package or component

net-snmp-devel
Operating systems & Components / Operating system package or component

net-snmp-debugsource
Operating systems & Components / Operating system package or component

net-snmp-debuginfo
Operating systems & Components / Operating system package or component

net-snmp
Operating systems & Components / Operating system package or component

libsnmp30-debuginfo
Operating systems & Components / Operating system package or component

libsnmp30
Operating systems & Components / Operating system package or component

Vendor SUSE

Security Bulletin

This security bulletin contains information about 2 vulnerabilities.

1) Null pointer dereference

EUVDB-ID: #VU15322

Risk: Low

CVSSv3.1: 5.7 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2018-18065

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a remote authenticated attacker to cause DoS condition on the target system.

The vulnerability exists  in the _set_key() function, as defined in the agent/helpers/table_container.c source code file due to a NULL pointer exception bug. A remote attacker can send a malicious UDP packet, trigger a NULL pointer dereference condition, cause the application to crash.

Mitigation

Update the affected package net-snmp to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server for SAP: 15-SP1

SUSE Linux Enterprise High Performance Computing: 15-SP1-ESPOS - 15-SP1-LTSS

SUSE Enterprise Storage: 6

SUSE CaaS Platform: 4.0

SUSE Linux Enterprise Module for Packagehub Subpackages: 15-SP3

SUSE Linux Enterprise Server: 15-SP1-BCL - 15-SP1-LTSS

SUSE Linux Enterprise Module for Basesystem: 15-SP3

libsnmp30-32bit-debuginfo: before 5.7.3-10.9.1

libsnmp30-32bit: before 5.7.3-10.9.1

snmp-mibs: before 5.7.3-10.9.1

perl-SNMP-debuginfo: before 5.7.3-10.9.1

perl-SNMP: before 5.7.3-10.9.1

net-snmp-devel: before 5.7.3-10.9.1

net-snmp-debugsource: before 5.7.3-10.9.1

net-snmp-debuginfo: before 5.7.3-10.9.1

net-snmp: before 5.7.3-10.9.1

libsnmp30-debuginfo: before 5.7.3-10.9.1

libsnmp30: before 5.7.3-10.9.1

External links

http://www.suse.com/support/update/announcement/2022/suse-su-20220050-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Incorrect permission assignment for critical resource

EUVDB-ID: #VU45745

Risk: Medium

CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2020-15862

CWE-ID: CWE-732 - Incorrect Permission Assignment for Critical Resource

Exploit availability: No

Description

The vulnerability allows a remote user to escalate privileges on the system.

The vulnerability exists due to insecure permissions set by the Net-snmp installed on Debian-based systems. A remote user can overwrite files in net-snmp directory via EXTEND MIB and execute arbitrary code on the system with root privileges.

Mitigation

Update the affected package net-snmp to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server for SAP: 15-SP1

SUSE Linux Enterprise High Performance Computing: 15-SP1-ESPOS - 15-SP1-LTSS

SUSE Enterprise Storage: 6

SUSE CaaS Platform: 4.0

SUSE Linux Enterprise Module for Packagehub Subpackages: 15-SP3

SUSE Linux Enterprise Server: 15-SP1-BCL - 15-SP1-LTSS

SUSE Linux Enterprise Module for Basesystem: 15-SP3

libsnmp30-32bit-debuginfo: before 5.7.3-10.9.1

libsnmp30-32bit: before 5.7.3-10.9.1

snmp-mibs: before 5.7.3-10.9.1

perl-SNMP-debuginfo: before 5.7.3-10.9.1

perl-SNMP: before 5.7.3-10.9.1

net-snmp-devel: before 5.7.3-10.9.1

net-snmp-debugsource: before 5.7.3-10.9.1

net-snmp-debuginfo: before 5.7.3-10.9.1

net-snmp: before 5.7.3-10.9.1

libsnmp30-debuginfo: before 5.7.3-10.9.1

libsnmp30: before 5.7.3-10.9.1

External links

http://www.suse.com/support/update/announcement/2022/suse-su-20220050-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###