Scientific Linux Security Update : net-snmp on SL6.x, SL7.x i386/x86_64
High Nessus Plugin ID 85500
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionIt was discovered that the snmp_pdu_parse() function could leave incompletely parsed varBind variables in the list of variables. A remote, unauthenticated attacker could use this flaw to crash snmpd or, potentially, execute arbitrary code on the system with the privileges of the user running snmpd. (CVE-2015-5621)
SolutionUpdate the affected packages.