Files involved in CAN-2003-0935

Jeffrey Johnson Tue, 26 Oct 2004 15:09:17 -0700

I am working with a version of net-snmp prior to 5.0.9. The local version has a large number of local changes, so we are hesitant to attempt to upgrade to 5.0.9 or newer code (i.e. if it ain�t broke, don�t fix it). But CAN-2003-0935 is enough of an issue that we need to fix it. Can someone point me at the files that were modified to fix this vulnerability? I�m looking at the delta between 5.0.8 and 5.0.9 and it looks like the changes in the following files may be the ones involved, but just want some reassurance: agent/mibgroup/mibII/vacm_vars.c include/net-snmp/library/vacm.h snmplib/vacm.c

Also, is there a test case I can use to verify the existence of the vulnerability in my current code and the fix for the vulnerability afterwards?

Thanks!
jf

_________________________________________________________________ Express yourself instantly with MSN Messenger! Download today - it's FREE! http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/

-------------------------------------------------------
This SF.Net email is sponsored by:
Sybase ASE Linux Express Edition - download now for FREE
LinuxWorld Reader's Choice Award Winner for best database on Linux.
http://ads.osdn.com/?ad_id=5588&alloc_id=12065&op=click
_______________________________________________
Net-snmp-coders mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/net-snmp-coders

Files involved in CAN-2003-0935

Reply via email to