[Pkg-net-snmp-devel] Bug#963713: net-snmp: CVE-2019-20892
Salvatore Bonaccorso
carnil at debian.org
Fri Jun 26 22:18:22 BST 2020
Hi Andreas,
On Thu, Jun 25, 2020 at 06:31:13PM -0300, Andreas Hasenack wrote:
> Hi,
>
> we are not happy yet with those commits because they change a struct
> without bumping the soname. We are investigating how impactful that is.
Ack thanks for this heads-up.
Do you have any indication where the issue was actually introduced?
The oss-security post is slight confising in this regard. I can
reproduce the issue with the given version 5.8+dfsg-2. But not in
buster.
Regards,
Salvatore
More information about the Pkg-net-snmp-devel
mailing list