CVE-2019-20892

net-snmp before 5.8.1.pre1 has a double free in usm_free_usmStateReference in snmplib/snmpusm.c via an SNMPv3 GetBulk request. NOTE: this affects net-snmp packages shipped to end users by multiple Linux distributions, but might not affect an upstream release.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:net-snmp:net-snmp:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:*

History

No history.

Information

Published : 2020-06-25 10:15

Updated : 2024-02-28 17:47


NVD link : CVE-2019-20892

Mitre link : CVE-2019-20892

CVE.ORG link : CVE-2019-20892


JSON object : View

Products Affected

net-snmp

  • net-snmp

oracle

  • zfs_storage_appliance_kit
CWE
CWE-415

Double Free