From 7e930376320e016856285807d7788b01e51cc594 Mon Sep 17 00:00:00 2001
From: Patrick J Volkerding <volkerdi@slackware.com>
Date: Thu, 21 Jul 2022 18:13:18 +0000
Subject: Thu Jul 21 18:13:18 UTC 2022

patches/packages/net-snmp-5.9.3-x86_64-1_slack15.0.txz:  Upgraded.
  This update fixes security issues:
  A buffer overflow in the handling of the INDEX of NET-SNMP-VACM-MIB can cause
  an out-of-bounds memory access.
  A malformed OID in a GET-NEXT to the nsVacmAccessTable can cause a NULL
  pointer dereference.
  Improper Input Validation when SETing malformed OIDs in master agent and
  subagent simultaneously.
  A malformed OID in a SET request to SNMP-VIEW-BASED-ACM-MIB::vacmAccessTable
  can cause an out-of-bounds memory access.
  A malformed OID in a SET request to NET-SNMP-AGENT-MIB::nsLogTable can cause a
  NULL pointer dereference.
  A malformed OID in a SET to the nsVacmAccessTable can cause a NULL pointer
  dereference.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24805
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24809
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24806
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24807
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24808
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24810
  (* Security fix *)
---
 patches/source/net-snmp/rc.snmpd | 55 ++++++++++++++++++++++++++++++++++++++++
 1 file changed, 55 insertions(+)
 create mode 100644 patches/source/net-snmp/rc.snmpd

(limited to 'patches/source/net-snmp/rc.snmpd')

diff --git a/patches/source/net-snmp/rc.snmpd b/patches/source/net-snmp/rc.snmpd
new file mode 100644
index 000000000..ae847e68b
--- /dev/null
+++ b/patches/source/net-snmp/rc.snmpd
@@ -0,0 +1,55 @@
+#!/bin/sh
+#
+# rc.snmpd	This shell script takes care of starting and stopping
+#		the net-snmp SNMP daemon
+
+[ -r /etc/default/snmpd ] && . /etc/default/snmpd
+SNMPD_OPTIONS=${SNMPD_OPTIONS:-"-A -p /var/run/snmpd -a"}
+
+start() {
+	if [ -x /usr/sbin/snmpd -a -f /etc/snmp/snmpd.conf ]; then
+		echo -n "Starting snmpd: "
+		/usr/sbin/snmpd $SNMPD_OPTIONS -c /etc/snmp/snmpd.conf
+		echo " /usr/sbin/snmpd $SNMPD_OPTIONS -c /etc/snmp/snmpd.conf"
+	fi
+}
+
+stop() {
+        # Stop daemons.
+	COUNT=0
+        echo -n "Shutting down snmpd: "
+	while `killall snmpd 2>/dev/null`; do
+		echo -n "."
+		sleep 1
+		COUNT=$((COUNT+1))
+		if [ $COUNT -ge 30 ]; then
+			killall -9 snmpd
+			sleep 1
+			break
+		fi
+	done
+	echo " DONE"
+}
+
+# See how we were called.
+case "$1" in
+  start)
+	start
+        ;;
+  stop)
+	stop
+        ;;
+  restart|reload)
+	stop
+	start
+	;;
+  condrestart)
+	if [ -f /var/run/snmpd ]; then
+	    stop
+	    start
+	fi
+	;;
+  *)
+        echo $"Usage: $0 {start|stop|restart|condrestart}"
+	;;
+esac
-- 
cgit v1.2.3-65-gdbad