A fix for net-snmp is in Intrepid:
net-snmp (5.4.1~dfsg-7.1ubuntu2) intrepid; urgency=low
* SECURITY UPDATE: HMAC authentication spoofing.
* debian/patches/51_CVE-2008-0960.patch: fixes HMAC authentication spoofing.
* debian/patches/52_use_right_config_file.patch: Use the right configuration
file for lmsensors. (LP: #192745)
-- Chuck Short < [EMAIL PROTECTED]> Mon, 16 Jun 2008 15:47:18 +0000
I intended to nominate this bug for the Dapper-Hardy releases only in
net-snmp but I now can't figure out how to remove the nominations from
ecos and ucd-snmp.
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2008-0960
** Changed in: net-snmp (Ubuntu)
Status: New => Fix Released
--
[CVE-2008-0960] Multiple SNMP implementations HMAC authentication spoofing
https://bugs.launchpad.net/bugs/239129
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
