aboutsummaryrefslogtreecommitdiff
path: root/package/netsnmp
diff options
context:
space:
mode:
authorGravatar Gustavo Zacarias <gustavo@zacarias.com.ar>2014-03-10 14:13:02 -0300
committerGravatar Peter Korsgaard <peter@korsgaard.com>2014-03-11 11:50:12 +0100
commit517c1deebf56a27661c9d758cd7a3648b87677a4 (patch)
treef2bcda337cc88fb829e234d9683e8d0e0065aec6 /package/netsnmp
parentdf2b2104f4ed219f28bcea12b24cb9507666ee0c (diff)
downloadbuildroot-517c1deebf56a27661c9d758cd7a3648b87677a4.tar.gz
buildroot-517c1deebf56a27661c9d758cd7a3648b87677a4.tar.bz2
netsnmp: security bump to version 5.7.2.1
Fixes CVE-2014-2284 but not CVE-2014-2285 so add a patch for that one. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Diffstat (limited to 'package/netsnmp')
-rw-r--r--package/netsnmp/netsnmp-001-CVE-2014-2285.patch31
-rw-r--r--package/netsnmp/netsnmp.mk2
2 files changed, 32 insertions, 1 deletions
diff --git a/package/netsnmp/netsnmp-001-CVE-2014-2285.patch b/package/netsnmp/netsnmp-001-CVE-2014-2285.patch
new file mode 100644
index 0000000000..d7a3057d45
--- /dev/null
+++ b/package/netsnmp/netsnmp-001-CVE-2014-2285.patch
@@ -0,0 +1,31 @@
+Fix for CVE-2014-2285 from upstream:
+http://sourceforge.net/p/net-snmp/patches/1275/
+
+Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
+
+--- net-snmp-5.7.3.pre3/perl/TrapReceiver/TrapReceiver.xs.null 2014-02-25 21:50:16.000000000 +0100
++++ net-snmp-5.7.3.pre3/perl/TrapReceiver/TrapReceiver.xs 2014-03-03 18:59:20.261766270 +0100
+@@ -81,18 +81,18 @@ int perl_trapd_handler( netsnmp_pdu
+ STOREPDUi("securitymodel", pdu->securityModel);
+ STOREPDUi("securitylevel", pdu->securityLevel);
+ STOREPDU("contextName",
+- newSVpv(pdu->contextName, pdu->contextNameLen));
++ newSVpv(pdu->contextName ? pdu->contextName : "", pdu->contextNameLen));
+ STOREPDU("contextEngineID",
+- newSVpv((char *) pdu->contextEngineID,
++ newSVpv(pdu->contextEngineID ? (char *) pdu->contextEngineID : "",
+ pdu->contextEngineIDLen));
+ STOREPDU("securityEngineID",
+- newSVpv((char *) pdu->securityEngineID,
++ newSVpv(pdu->securityEngineID ? (char *) pdu->securityEngineID : "",
+ pdu->securityEngineIDLen));
+ STOREPDU("securityName",
+- newSVpv((char *) pdu->securityName, pdu->securityNameLen));
++ newSVpv(pdu->securityName ? (char *) pdu->securityName : "", pdu->securityNameLen));
+ } else {
+ STOREPDU("community",
+- newSVpv((char *) pdu->community, pdu->community_len));
++ newSVpv(pdu->community ? (char *) pdu->community : "", pdu->community_len));
+ }
+
+ if (transport && transport->f_fmtaddr) {
diff --git a/package/netsnmp/netsnmp.mk b/package/netsnmp/netsnmp.mk
index 4830c00e85..63ec97a4d3 100644
--- a/package/netsnmp/netsnmp.mk
+++ b/package/netsnmp/netsnmp.mk
@@ -4,7 +4,7 @@
#
################################################################################
-NETSNMP_VERSION = 5.7.2
+NETSNMP_VERSION = 5.7.2.1
NETSNMP_SITE = http://downloads.sourceforge.net/project/net-snmp/net-snmp/$(NETSNMP_VERSION)
NETSNMP_SOURCE = net-snmp-$(NETSNMP_VERSION).tar.gz
NETSNMP_LICENSE = Various BSD-like