Mandriva Linux Security Advisory : net-snmp (MDVSA-2014:052)
Medium Nessus Plugin ID 72999
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionUpdated net-snmp packages fix two vulnerabilities :
Remotely exploitable denial of service vulnerability in Net-SNMP, in the Linux implementation of the ICMP-MIB, making the SNMP agent vulnerable if it is making use of the ICMP-MIB table objects (CVE-2014-2284).
Remotely exploitable denial of service vulnerability in Net-SNMP, in snmptrapd, due to how it handles trap requests with an empty community string when the perl handler is enabled (CVE-2014-2285).
SolutionUpdate the affected packages.