diff options
| author | adam <adam@pkgsrc.org> | 2008-07-15 09:14:01 +0000 |
|---|---|---|
| committer | adam <adam@pkgsrc.org> | 2008-07-15 09:14:01 +0000 |
| commit | af49cad5c1303b435621623d5b4c9c8d90bc2a78 (patch) | |
| tree | ade3c953118fcdf77b058c09b74d4bfc6b213bfa /net/net-snmp/patches | |
| parent | 5d2ec456ed958c0abf7b410a331593e3bae7db25 (diff) | |
| download | pkgsrc-af49cad5c1303b435621623d5b4c9c8d90bc2a78.tar.gz | |
Changes 5.4.1.2:
* An increment only in the version number that was failing to be
reported properly by the tools.
Changes 5.4.1.1:
* SECURITY BUG: A portion of SNMPv3 code had significantly weakened
authentication cryptography and unauthenticated access to a system
is a possibility.
* It is critical that all users update their installations bases
IMMEDIATELY.
* If you were only using SNMPv1 or SNMPv2c you were already insecure
beyond a level that this vulnerability affects.
Diffstat (limited to 'net/net-snmp/patches')
| -rw-r--r-- | net/net-snmp/patches/patch-am | 2 | ||||
| -rw-r--r-- | net/net-snmp/patches/patch-de | 2 | ||||
| -rw-r--r-- | net/net-snmp/patches/patch-ep | 16 |
3 files changed, 12 insertions, 8 deletions
diff --git a/net/net-snmp/patches/patch-am b/net/net-snmp/patches/patch-am index 2167a5da31f..c4162bb18fa 100644 --- a/net/net-snmp/patches/patch-am +++ b/net/net-snmp/patches/patch-am @@ -1,3 +1,5 @@ +$NetBSD: patch-am,v 1.8 2008/07/15 09:14:01 adam Exp $ + --- agent/mibgroup/host/hr_swrun.c.orig 2007-04-02 16:51:34 +0300 +++ agent/mibgroup/host/hr_swrun.c 2007-09-12 21:41:48 +0300 @@ -599,6 +599,8 @@ diff --git a/net/net-snmp/patches/patch-de b/net/net-snmp/patches/patch-de index d474a7d4644..b7b7fd279d2 100644 --- a/net/net-snmp/patches/patch-de +++ b/net/net-snmp/patches/patch-de @@ -1,3 +1,5 @@ +$NetBSD: patch-de,v 1.6 2008/07/15 09:14:01 adam Exp $ + --- agent/mibgroup/mibII/ipv6.c.orig 2007-05-25 01:01:04 +0300 +++ agent/mibgroup/mibII/ipv6.c 2008-05-26 22:26:32 +0300 @@ -11,7 +11,7 @@ diff --git a/net/net-snmp/patches/patch-ep b/net/net-snmp/patches/patch-ep index ecf104b40e5..5c1c9598462 100644 --- a/net/net-snmp/patches/patch-ep +++ b/net/net-snmp/patches/patch-ep @@ -1,8 +1,8 @@ -$NetBSD: patch-ep,v 1.3 2008/06/12 13:32:24 tron Exp $ +$NetBSD: patch-ep,v 1.4 2008/07/15 09:14:01 adam Exp $ ---- snmplib/scapi.c.orig 2006-09-15 13:47:01.000000000 +0100 -+++ snmplib/scapi.c 2008-06-12 13:58:35.000000000 +0100 -@@ -272,7 +272,7 @@ +--- snmplib/scapi.c.orig 2008-06-09 21:20:35.000000000 +0200 ++++ snmplib/scapi.c +@@ -272,7 +272,7 @@ sc_generate_keyed_hash(const oid * autht u_char buf[SNMP_MAXBUF_SMALL]; #if defined(NETSNMP_USE_OPENSSL) || defined(NETSNMP_USE_PKCS11) @@ -11,14 +11,14 @@ $NetBSD: patch-ep,v 1.3 2008/06/12 13:32:24 tron Exp $ #endif DEBUGTRACE; -@@ -563,6 +563,10 @@ +@@ -553,6 +553,10 @@ sc_check_keyed_hash(const oid * authtype } - + #endif /* NETSNMP_ENABLE_TESTING_CODE */ + if (maclen != USM_MD5_AND_SHA_AUTH_LEN) { + QUITFUN(SNMPERR_GENERR, sc_check_keyed_hash_quit); + } + /* - * Generate a full hash of the message, then compare - * the result with the given MAC which may shorter than + * Sanity check. + */ |