Do the patch mentioned for CVE-2019-20892 in the link below, will fix this double free crash? Is it safe to appy this patch?
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20892 -Feroz On Fri, 5 Mar, 2021, 2:01 am chandrasekharreddy c, < chandrasekharre...@hotmail.com> wrote: > Hi Team, > > > I'm upgraded to net-snmp 5.8 version recently. > I'm getting snmpd core dump with double free while doing snmpv3 bulk get. > I compared net-snmp 5.8 and 5.9. > It looks like some changes happend. > My bt is like this. > > #0 __GI_raise (sig=sig@entry=6) at ../sysdeps/unix/sysv/linux/raise.c:50 > > #1 0x0000ffffa3729f54 in __GI_abort () at abort.c:79 > > #2 0x0000ffffa3774274 <+913774274> in __libc_message > (action=action@entry=do_abort, > fmt=fmt@entry=0xffffa382ca68 "%s\n") at ../sysdeps/posix/libc_fatal.c:181 > > #3 0x0000ffffa377b52c in malloc_printerr (str=str@entry=0xffffa3828468 > <+913828468> "double free or corruption (fasttop)") at malloc.c:5332 > > #4 0x0000ffffa377cdec in _int_free (av=<optimized out>, p=0x4d56b0, > have_lock=0) at malloc.c:4266 > > #5 0x0000ffffa38e98c8 in usm_free_usmStateReference (old=old@entry=0x56dc60) > at snmpusm.c:313 > > #6 0x0000ffffa38ee194 in usm_generate_out_msg (msgProcModel=<optimized > out>, globalData=<optimized out>, globalDataLen=27, maxMsgSize=<optimized > out>, secModel=<optimized > > out>, secEngineID=<optimized out>, secEngineIDLen=<optimized out>, > secName=<optimized out>, secNameLen=5, secLevel=3, scopedPdu=0xfffff9717bb0 > "0\202\004\321\004\033\200", scopedPduLen=1237, secStateRef=0x56dc60, > secParams=0x5639fb ' ' <repeats 200 times>..., secParamsLen=0xfffff9717b00, > wholeMsg=0xfffff9717b10, wholeMsgLen=0xfffff97182e8) at snmpusm.c:1201 > > #7 0x0000ffffa38eec0c in usm_secmod_generate_out_msg (parms=<optimized > out>) at snmpusm.c:868 > > #8 0x0000ffffa38a9b20 in snmpv3_packet_build (session=session@entry=0x456bd0, > pdu=pdu@entry=0x577340 <+91577340>, packet=0x5639e0 "0\202", > out_length=out_length@entry=0xfffff97182e8, > > pdu_data=pdu_data@entry=0x0, pdu_data_len=pdu_data_len@entry=0) at > snmp_api.c:3085 > > #9 0x0000ffffa38ab824 in snmpv3_build (pdu=0x577340 <+91577340>, > session=0x456bd0, offset=0xfffff9718228 <+919718228>, > pkt_len=0xfffff97182e8, pkt=0xfffff97182d0) at snmp_api.c:2561 > > #10 _snmp_build (pdu=0x577340 <+91577340>, session=0x456bd0, > offset=0xfffff9718228 <+919718228>, pkt_len=0xfffff97182e8, > pkt=0xfffff97182d0) at snmp_api.c:3143 > > #11 snmp_build (pkt=0xfffff97182d0, pkt_len=0xfffff97182e8, offset=0xfffff > 9718228 <+919718228>, pss=0x456bd0, pdu=0x577340) <+91577340> at > snmp_api.c:3482 > > #12 0x0000ffffa38abd20 in netsnmp_build_packet (isp=isp@entry=0x4bd9d0, > sp=sp@entry=0x456bd0, pdu=pdu@entry=0x577340 <+91577340>, > pktbuf_p=pktbuf_p@entry=0xfffff97182d0, > pktbuf_len_p=pktbuf_len_p@entry=0xfffff97182e0, > pkt_p=pkt_p@entry=0xfffff97182d8, len_p=len_p@entry=0xfffff97182e8) at > snmp_api.c:5294 > > #13 0x0000ffffa38abec4 in _build_initial_pdu_packet (slp=<optimized out>, > pdu=0x577340 <+91577340>, bulk=1) at snmp_api.c:5471 > > #14 0x0000ffffa49ac874 in netsnmp_wrap_up_request (asp=asp@entry=0x4c9c30, > status=status@entry=0) at snmp_agent.c:2011 > > #15 0x0000ffffa49afc0c in check_delayed_request (asp=asp@entry=0x4c9c30) > at snmp_agent.c:3470 > > #16 0x0000ffffa49afca8 in netsnmp_check_delegated_requests () at > snmp_agent.c:3282 > > #17 0x0000ffffa49b08c4 in netsnmp_check_outstanding_agent_requests () at > snmp_agent.c:3314 > > #18 0x0000000000403 <+91000000000403>da0 in ?? () > > #19 0x000000000040361c in ?? () > > #20 0x0000ffffa372a3ac in __libc_start_main (main=0x4025a0, argc=7, > argv=0xfffff9718858 <+919718858>, init=<optimized out>, fini=<optimized > out>, rtld_fini=<optimized out>, stack_end=<optimized out>) at > ../csu/libc-start.c:308 > > #21 0x00000000004039 <+910000000004039>bc in ?? () > > > How to get patch details .can you please help me > > > > Thanks, > Chandra > > Get Outlook for Android <https://aka.ms/ghei36> > _______________________________________________ > Net-snmp-users mailing list > net-snmp-us...@lists.sourceforge.net > Please see the following page to unsubscribe or change other options: > https://lists.sourceforge.net/lists/listinfo/net-snmp-users >
_______________________________________________ Net-snmp-coders mailing list Net-snmp-coders@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/net-snmp-coders
