New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[18.09] net_snmp: fix CVE-2018-18065 #48125
Conversation
(cherry picked from commit 2f7c242)
Failure on x86_64-darwin (full log) Attempted: sbt, tinc, vdirsyncer The following builds were skipped because they don't evaluate on x86_64-darwin: net_snmp, nixos-container Partial log (click to expand)
|
Success on aarch64-linux (full log) Attempted: net_snmp, nixos-container, tinc, vdirsyncer The following builds were skipped because they don't evaluate on aarch64-linux: sbt Partial log (click to expand)
|
Success on aarch64-linux (full log) Attempted: net_snmp Partial log (click to expand)
|
No attempt on x86_64-darwin (full log) The following builds were skipped because they don't evaluate on x86_64-darwin: net_snmp Partial log (click to expand)
|
Success on aarch64-linux (full log) Attempted: net_snmp, nixos-container, tinc, vdirsyncer The following builds were skipped because they don't evaluate on aarch64-linux: sbt Partial log (click to expand)
|
Success on x86_64-linux (full log) Attempted: net_snmp Partial log (click to expand)
|
Failure on x86_64-darwin (full log) Attempted: sbt, tinc, vdirsyncer The following builds were skipped because they don't evaluate on x86_64-darwin: net_snmp, nixos-container Partial log (click to expand)
|
Success on x86_64-linux (full log) Attempted: net_snmp, nixos-container, sbt, tinc, vdirsyncer Partial log (click to expand)
|
Success on x86_64-linux (full log) Attempted: net_snmp, nixos-container, sbt, tinc, vdirsyncer Partial log (click to expand)
|
Motivation for this change
This addresses a remote DoS attack (CVE-2018-18065).
Things done
sandbox
innix.conf
on non-NixOS)nix-shell -p nox --run "nox-review wip"
./result/bin/
)nix path-info -S
before and after)