Subject: CVS commit: pkgsrc/net
From: Adam Ciarcinski
Date: 2022-10-18 14:01:53
Message id: 20221018120153.49D91FA90@cvs.NetBSD.org
Log Message:
net-snmp py-netsnmp: updated to 5.9.3

*5.9.3*:
    security:
      - These two CVEs can be exploited by a user with read-only credentials:
          - CVE-2022-24805 A buffer overflow in the handling of the INDEX of
            NET-SNMP-VACM-MIB can cause an out-of-bounds memory access.
          - CVE-2022-24809 A malformed OID in a GET-NEXT to the nsVacmAccessTable
            can cause a NULL pointer dereference.
      - These CVEs can be exploited by a user with read-write credentials:
          - CVE-2022-24806 Improper Input Validation when SETing malformed
            OIDs in master agent and subagent simultaneously
          - CVE-2022-24807 A malformed OID in a SET request to
            SNMP-VIEW-BASED-ACM-MIB::vacmAccessTable can cause an
            out-of-bounds memory access.
          - CVE-2022-24808 A malformed OID in a SET request to
            NET-SNMP-AGENT-MIB::nsLogTable can cause a NULL pointer dereference
          - CVE-2022-24810 A malformed OID in a SET to the nsVacmAccessTable
            can cause a NULL pointer dereference.
      - To avoid these flaws, use strong SNMPv3 credentials and do not share them.
        If you must use SNMPv1 or SNMPv2c, use a complex community string
        and enhance the protection by restricting access to a given IP address range.
      - Thanks are due to Yu Zhang of VARAS@IIE and Nanyu Zhong of VARAS@IIE for
        reporting the following CVEs that have been fixed in this release, and
        to Arista Networks for providing fixes.

    misc:
      - Snmp-create-v3-user: Fix the snmpd.conf path   @datadir@ is
        expanded in ${datarootdir} so datarootdir must be set before
        @datadir@ is used.

    general: Many bug fixes

*5.9.2*:
    skipped due to a last minute library versioning found bug -- use 5.9.3 instead

*5.9.1*:
    General: Many bug fixes

*5.9*
    snmplib:
      - Add IPv6 support to DTLSUDP transport CHANGES: snmplib: use new
        netsnmp_sockaddr_storage in netsnmp_addr_pair CHANGES: snmplib: add
        base_transport ptr for tunneled transports

    snmpd:
      - Security vulnerabilty in the ping MIB reported by Christopher Ertl
        from Microsoft fixed
      - Changing to a different uid/gid can only be done once
      - The extend mib is now read-only by default

    snmptrap:
      - BUG: 2899: Patch from Drew Roedersheimer to set library
        engineboots/time values before sending

    unspecified:
      - Add pkg-config support for building applications and sub-agents Use
        the netsnmp package when building Net-SNMP applications. Use the
        netsnmp-agent package when building Net-SNMP subagents.
Files:
RevisionActionfile
1.139modifypkgsrc/net/net-snmp/Makefile
1.7modifypkgsrc/net/net-snmp/Makefile.common
1.30modifypkgsrc/net/net-snmp/PLIST
1.3modifypkgsrc/net/net-snmp/builtin.mk
1.100modifypkgsrc/net/net-snmp/distinfo
1.8modifypkgsrc/net/net-snmp/patches/patch-agent_mibgroup_hardware_cpu_cpu__sysctl.c
1.5modifypkgsrc/net/net-snmp/patches/patch-agent_mibgroup_host_data__access_swrun__kinfo.c
1.2modifypkgsrc/net/net-snmp/patches/patch-agent_mibgroup_kernel__sunos5.c
1.3modifypkgsrc/net/net-snmp/patches/patch-agent_mibgroup_mibII_udpTable.c
1.3modifypkgsrc/net/net-snmp/patches/patch-configure
1.11modifypkgsrc/net/py-netsnmp/Makefile
1.1addpkgsrc/net/net-snmp/patches/patch-agent_auto__nlist.c
1.1addpkgsrc/net/net-snmp/patches/patch-agent_mibgroup_hardware_memory_memory__freebsd.c
1.1addpkgsrc/net/net-snmp/patches/patch-agent_mibgroup_host_hr__storage.c
1.1addpkgsrc/net/net-snmp/patches/patch-agent_mibgroup_host_hr__swrun.c
1.1addpkgsrc/net/net-snmp/patches/patch-agent_mibgroup_if-mib_data__access_interface.h
1.1addpkgsrc/net/net-snmp/patches/patch-agent_mibgroup_mibII_icmp.c
1.1addpkgsrc/net/net-snmp/patches/patch-agent_mibgroup_mibII_interfaces.c
1.1addpkgsrc/net/net-snmp/patches/patch-agent_mibgroup_mibII_ip.c
1.1addpkgsrc/net/net-snmp/patches/patch-agent_mibgroup_mibII_tcp.c
1.1addpkgsrc/net/net-snmp/patches/patch-agent_mibgroup_mibII_udp.c
1.1addpkgsrc/net/net-snmp/patches/patch-agent_mibgroup_mibII_var__route.c
1.1addpkgsrc/net/net-snmp/patches/patch-agent_mibgroup_ucd-snmp_memory__netbsd1.c
1.1addpkgsrc/net/net-snmp/patches/patch-ov_UCD-fields
1.1addpkgsrc/net/net-snmp/patches/patch-ov_oid__to__type.in
1.1addpkgsrc/net/net-snmp/patches/patch-perl_OID_OID.xs
1.12removepkgsrc/net/net-snmp/patches/patch-ag
1.2removepkgsrc/net/net-snmp/patches/patch-agent_mibgroup_hardware_fsys_fsys_getfsstats.c
1.1removepkgsrc/net/net-snmp/patches/patch-agent_mibgroup_var__route.c
1.7removepkgsrc/net/net-snmp/patches/patch-ai
1.7removepkgsrc/net/net-snmp/patches/patch-aj
1.6removepkgsrc/net/net-snmp/patches/patch-ak
1.14removepkgsrc/net/net-snmp/patches/patch-am
1.3removepkgsrc/net/net-snmp/patches/patch-ap
1.3removepkgsrc/net/net-snmp/patches/patch-aq
1.2removepkgsrc/net/net-snmp/patches/patch-da
1.2removepkgsrc/net/net-snmp/patches/patch-db
1.6removepkgsrc/net/net-snmp/patches/patch-dl
1.10removepkgsrc/net/net-snmp/patches/patch-dt
1.4removepkgsrc/net/net-snmp/patches/patch-du
1.5removepkgsrc/net/net-snmp/patches/patch-el
1.3removepkgsrc/net/net-snmp/patches/patch-es
1.1removepkgsrc/net/net-snmp/patches/patch-snmplib_transports_snmpUDPBaseDomain.c