Bug 14113

Summary:	[CVE 21] net-snmp 5.9 CVEs
Product:	[ROSA-based products] ROSA Fresh	Reporter:	Vladimir Potapov <v.potapov>
Component:	Packages from Main	Assignee:	ROSA Linux Bugs <bugs>
Status:	VERIFIED FIXED	QA Contact:	ROSA Linux Bugs <bugs>
Severity:	blocker
Priority:	Highest	CC:	a.proklov, i.gaptrakhmanov, pastordidi
Version:	All	Flags:	v.potapov: qa_verified+ v.potapov: secteam_verified? a.proklov: published+
Target Milestone:	---
Hardware:	All
OS:	Linux
URL:	CVE-2022-44792,CVE-2022-44793
Whiteboard:
Platform:	---	ROSA Vulnerability identifier:
RPM Package:		ISO-related:
Bad POT generating:		Upstream:

Description Vladimir Potapov 2023-12-05 18:19:12 MSK

https://nvd.nist.gov/vuln/detail/CVE-2022-44792 Exploit!
https://nvd.nist.gov/vuln/detail/CVE-2022-44793 Exploit!

Comment 1 ilfat 2023-12-05 22:31:50 MSK

******** QA ADVISORY ********

CVEs closed by a patch

# net-snmp 5.9-3
https://abf.rosalinux.ru/build_lists/4857489 i686
https://abf.rosalinux.ru/build_lists/4857490 x86_64
https://abf.rosalinux.ru/build_lists/4857491 aarch64
https://abf.rosalinux.ru/build_lists/4857492 riscv64
https://abf.rosalinux.ru/build_lists/4857493 e2kv4

Comment 2 Dmitry Postnikov 2023-12-06 10:24:25 MSK

*****************************
Обновление отослано в Тестинг

Comment 3 Vladimir Potapov 2023-12-14 11:47:28 MSK

net-snmp-5.9-3
https://abf.rosalinux.ru/build_lists/4857489 i686
https://abf.rosalinux.ru/build_lists/4857490 x86_64
https://abf.rosalinux.ru/build_lists/4857491 aarch64
https://abf.rosalinux.ru/build_lists/4857492 riscv64
https://abf.rosalinux.ru/build_lists/4857493 e2kv4
************************** Advisory **********************
CVEs closed by a patch
**********************************************************
QA Verified