The SNMP agent (snmp_agent.c) in net-snmp before 5.4.1 allows remote attackers to cause a denial of service (CPU and memory consumption) via a GETBULK request with a large max-repeaters value. For the stable distribution (etch), this problem has been fixed in version 5.2.3-7etch2. For the unstable and testing distributions (sid and lenny, respectively), this problem has been fixed in version 5.4.1~dfsg-2. We recommend that you upgrade your net-snmp package.
The SNMP agent (snmp_agent.c) in net-snmp before 5.4.1 allows remote attackers to cause a denial of service (CPU and memory consumption) via a GETBULK request with a large max-repeaters value.
For the stable distribution (etch), this problem has been fixed in version 5.2.3-7etch4.
For the unstable and testing distributions (sid and lenny, respectively), this problem has been fixed in version 5.4.1~dfsg-2.
We recommend that you upgrade your net-snmp package.
MD5 checksums of the listed files are available in the original advisory.