Branches for Quantal

Name Status Last Modified Last Commit
lp://staging/ubuntu/quantal/net-snmp 2 Mature 2012-06-20 09:45:11 UTC
57. * Merge from Debian unstable. Remaini...

Author: Marc Deslauriers
Revision Date: 2012-06-20 09:45:11 UTC

* Merge from Debian unstable. Remaining changes:
  - debian/rules: Don't stop service in runlevels 0 and 6.
  - debian/snmpd.init: LSBify the init script.
  - debian/snmp.preinst, debian/snmp.prerm: Kill any/all processes owned
    by snmp user before install/uninstall.
  - Add apport hook.
  - debian/patches/ubuntu-fix-lp-587828.patch: Fix row creation for 64bit
    arches
  - debian/{control,rules}: Use dh_python2
* Dropped changes:
  - debian/patches/50_use_bash.patch: Patch wasn't actually being
    applied, and upstream apparently fixed this in 5.4.2.
  - debian/patches/52_fix_snmpcmd_1_typo.patch: Patch wasn't actually
    being applied, and fix is included in 56_manpage.patch.
  - debian/snmpd.postinst: Source debconf before doing work: included in
    debian package now.
  - debian/patches/99-fix-ubuntu-div0.patch: wasn't applied.
  - debian/patches/CVE-2008-6123.*: wasn't applied.
  - debian/patches/CVE-2012-2141.patch: use debian's patch.
  - debian/README.Debian-source: this change is irrelevant since we
    use the debian tarball as-is.
  - debian/rules: removed misc irrelevant and undocumented changes.
  - debian/snmpd.postinst: no longer need to remove shutdown and reboot
    links since this is from Maverick-era.

lp://staging/ubuntu/quantal-security/net-snmp 2 Mature 2014-04-14 13:14:23 UTC
58. * SECURITY UPDATE: denial of service ...

Author: Marc Deslauriers
Revision Date: 2014-03-11 09:57:44 UTC

* SECURITY UPDATE: denial of service via AgentX subagent timeout
  - debian/patches/CVE-2012-6151.patch: track cancelled sessions in
    agent/mibgroup/agentx/{master.c,master_admin.c}, agent/snmp_agent.c,
    include/net-snmp/agent/snmp_agent.h.
  - CVE-2012-6151
* SECURITY UPDATE: denial of service in perl trap handler
  - debian/patches/CVE-2014-2285.patch: handle empty community string in
    perl/TrapReceiver/TrapReceiver.xs.
  - CVE-2014-2285
* SECURITY UPDATE: denial of service via multiple-object requests
  - debian/patches/CVE-2014-2310.patch: fix lengths in
    agent/mibgroup/agentx/protocol.c.
  - CVE-2014-2310

lp://staging/ubuntu/quantal-updates/net-snmp 2 Mature 2014-04-14 13:24:06 UTC
58. * SECURITY UPDATE: denial of service ...

Author: Marc Deslauriers
Revision Date: 2014-03-11 09:57:44 UTC

* SECURITY UPDATE: denial of service via AgentX subagent timeout
  - debian/patches/CVE-2012-6151.patch: track cancelled sessions in
    agent/mibgroup/agentx/{master.c,master_admin.c}, agent/snmp_agent.c,
    include/net-snmp/agent/snmp_agent.h.
  - CVE-2012-6151
* SECURITY UPDATE: denial of service in perl trap handler
  - debian/patches/CVE-2014-2285.patch: handle empty community string in
    perl/TrapReceiver/TrapReceiver.xs.
  - CVE-2014-2285
* SECURITY UPDATE: denial of service via multiple-object requests
  - debian/patches/CVE-2014-2310.patch: fix lengths in
    agent/mibgroup/agentx/protocol.c.
  - CVE-2014-2310

13 of 3 results