Sun Feb 15 11:31:51 2009 UTC ()

Add a patch from the "net-snmp" repository to close the vulnerability
reported in SA33884/CVE-2008-6123.


(tron)

diff -r1.75 -r1.76 pkgsrc/net/net-snmp/Makefile
diff -r1.51 -r1.52 pkgsrc/net/net-snmp/distinfo
diff -r0 -r1.7 pkgsrc/net/net-snmp/patches/patch-ad

--- pkgsrc/net/net-snmp/Makefile 2008/11/02 08:30:07 1.75
+++ pkgsrc/net/net-snmp/Makefile 2009/02/15 11:31:51 1.76

 @@ -1,16 +1,17 @@
-# $NetBSD: Makefile,v 1.75 2008/11/02 08:30:07 adam Exp $
+# $NetBSD: Makefile,v 1.76 2009/02/15 11:31:51 tron Exp $
 DISTNAME=	net-snmp-5.4.2.1
 PKGREVISION=	1
 CATEGORIES=	net
 MASTER_SITES=	${MASTER_SITE_SOURCEFORGE:=net-snmp/}
 MAINTAINER=	adam@NetBSD.org
 HOMEPAGE=	http://www.net-snmp.org/
 COMMENT=	Extensible SNMP implementation
 CONFLICTS=	ucd-snmp-[0-9]*
 CONFLICTS+=	nocol-[0-9]*	# bin/snmpget bin/snmpwalk
 USE_LIBTOOL=		yes
 GNU_CONFIGURE=		yes

--- pkgsrc/net/net-snmp/distinfo 2008/11/02 08:30:07 1.51
+++ pkgsrc/net/net-snmp/distinfo 2009/02/15 11:31:51 1.52

 @@ -1,21 +1,22 @@
-$NetBSD: distinfo,v 1.51 2008/11/02 08:30:07 adam Exp $
+$NetBSD: distinfo,v 1.52 2009/02/15 11:31:51 tron Exp $
 SHA1 (net-snmp-5.4.2.1.tar.gz) = 4f2df9ea62344fe840f493d0e08abe5de3697862
 RMD160 (net-snmp-5.4.2.1.tar.gz) = 2148c42d486ed88f9cfc3ca1d50c68abcd7e3d63
 Size (net-snmp-5.4.2.1.tar.gz) = 5185390 bytes
 SHA1 (patch-aa) = 34f85e513ace26c1c2b05bb1c4b72a23491861cf
 SHA1 (patch-ab) = 3227eeb8b54b37813d8b6949f8c6ddc446038bf2
 SHA1 (patch-ac) = becbd7d3f7bbd16d6ddd1a6ea5467a127553caa4
 SHA1 (patch-ad) = 4af27886f93bf018f6794c3f8b8dcb9b08389163
 SHA1 (patch-ae) = 721e62bb42b6d3787f36316cf2628cd71ae6a6ce
 SHA1 (patch-af) = 15a18d1a8f3a8ffaba5facb37420668791944d29
 SHA1 (patch-ag) = 7021f7238c37635c9c32ceca681fd42aa125437f
 SHA1 (patch-ah) = 9ad04b5c0046a82c4e601e4f3abb2dd491846489
 SHA1 (patch-ai) = c57baca06856187115db39fd50668203dad0a94c
 SHA1 (patch-aj) = 30c28c4801cea33d54e68bbde603e7d531dfb2f8
 SHA1 (patch-ak) = cccad21d4f56e79799a433ef7bf0e8ff4e917afb
 SHA1 (patch-al) = 2609e273d557e1ce06c1295d86965fe26ac7ff08
 SHA1 (patch-am) = 84fc1131fb2699ab45b161a07017253e23a8ad08
 SHA1 (patch-an) = 167f23c62c085efc96a25bc2be5dca3c746dde6f
 SHA1 (patch-da) = 7466445c8388492344acdee236b153cb5f5b45e1
 SHA1 (patch-db) = bec0bee1860ee42ba64b4c07df2280e206eaf582
 SHA1 (patch-dc) = 3f668032cbef42b44ee908b3c973af619ce0a689

$NetBSD: patch-ad,v 1.7 2009/02/15 11:31:51 tron Exp $

Patch for CVE-2008-6123, taken from here:

http://net-snmp.svn.sourceforge.net/viewvc/net-snmp/branches/V5-4-patches/net-snmp/snmplib/snmpUDPDomain.c?r1=17312&r2=17367&pathrev=17367

--- snmplib/snmpUDPDomain.c.orig	2007-10-11 21:46:30.000000000 +0100
+++ snmplib/snmpUDPDomain.c	2009-02-15 11:21:10.000000000 +0000
@@ -107,9 +107,9 @@
             sprintf(tmp, "UDP: [%s]->unknown",
                     inet_ntoa(addr_pair->local_addr));
         } else {
-            sprintf(tmp, "UDP: [%s]->", inet_ntoa(addr_pair->local_addr));
-            sprintf(tmp + strlen(tmp), "[%s]:%hd",
+            sprintf(tmp, "UDP: [%s]:%hu->",
                     inet_ntoa(to->sin_addr), ntohs(to->sin_port));
+            sprintf(tmp + strlen(tmp), "[%s]", inet_ntoa(addr_pair->local_addr));
         }
         return strdup(tmp);
     }