Detections
Analytics

MiracleLinux 4 : net-snmp-5.5-41.AXS4 (AXSA:2012-591:02)

medium Nessus Plugin ID 284396

Synopsis

The remote MiracleLinux host is missing a security update.

Description

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2012-591:02 advisory.

 SNMP (Simple Network Management Protocol) is a protocol used for network management. The NET-SNMP project includes various SNMP tools: an extensible agent, an SNMP library, tools for requesting or setting information from SNMP agents, tools for generating and handling SNMP traps and a version of the netstat command which uses SNMP. This package contains the snmpd and snmptrapd daemons, documentation, etc.
 You will probably also want to install the net-snmp-utils package, which contains NET-SNMP utilities.
 Security issues fixed with this release:
 CVE-2012-2141 No description available at the time of writing, please use the CVE link below.
 Bug Fixes A previous fix to snmpd crashing when an AgentX subagent disconnected while processing a request introduced a memory leak. This has been fixed.
 The BRIDGE-MIB wrongly converted the interface-index values from the kernel and reported incorrect ifIndex OIDs. The conversion problem has been fixed.
 snmpd does not modify logging settings when parsing proxy options, and no more unexpected debug messages are added to the system log.
 moved /var/lib/net-snmp fro net-snmp to net-snmp-libs package fixed proxying of out-of-tree GETNEXT requests fixed snmpd crashing with many AgentX subagent fixed SNMPv2-MIB::sysObjectID value when sysObjectID config file option with long OID was used fixed value of BRIDGE-MIB::dot1dBasePortIfIndex.1 fixed parsing of proxy snmpd.conf option not to enable verbose logging by default added new realStorageUnits config file option to support disks > 16 TB in hrStorageTable added vxfs, reiserfs and ocfs2 filesystem support to hrStorageTable fixed snmpd sigsegv when embedded perl script registers one handler twice fixed setting of SNMP-TARGET-MIB::snmpTargetAddrRowStatus via SNMP-SET request on 64-bit platforms fixed crash when /var/lib/net-snmp/mib_indexes/ files have wrong SELinux context fixed memory leak when agentx subagent disconnects in the middle of request processing fixed slow (re-)loads of TCP-MIB::tcpConnectionTable removed 'error finding row index in _ifXTable_container_row_restore' error message

Tenable has extracted the preceding description block directly from the MiracleLinux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Update the affected packages.

See Also

https://tsn.miraclelinux.com/en/node/3106

Plugin Details

Severity: Medium

ID: 284396

File Name: miracle_linux_AXSA-2012-591.nasl

Version: 1.1

Type: local

Published: 1/14/2026

Updated: 1/14/2026

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.6

Vendor

Vendor Severity: High

CVSS v2

Risk Factor: Low

Base Score: 3.5

Temporal Score: 2.6

Vector: CVSS2#AV:N/AC:M/Au:S/C:N/I:N/A:P

CVSS Score Source: CVE-2012-2141

CVSS v3

Risk Factor: Medium

Base Score: 6.5

Temporal Score: 5.7

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: p-cpe:/a:miracle:linux:net-snmp-libs, p-cpe:/a:miracle:linux:net-snmp-utils, p-cpe:/a:miracle:linux:net-snmp-perl, p-cpe:/a:miracle:linux:net-snmp-devel, p-cpe:/a:miracle:linux:net-snmp, cpe:/o:miracle:linux:4, p-cpe:/a:miracle:linux:net-snmp-python

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/MiracleLinux/release, Host/MiracleLinux/rpm-list

Exploit Ease: No known exploits are available

Patch Publication Date: 7/25/2012

Vulnerability Publication Date: 4/26/2012

Reference Information

CVE: CVE-2012-2141