vulnerability

Alpine Linux: CVE-2019-20892: Double Free

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:L/Au:S/C:N/I:N/A:P)	Jun 25, 2020	Oct 1, 2024	Nov 20, 2025

Severity

CVSS

(AV:N/AC:L/Au:S/C:N/I:N/A:P)

Published

Jun 25, 2020

Added

Oct 1, 2024

Modified

Nov 20, 2025

Description

net-snmp before 5.8.1.pre1 has a double free in usm_free_usmStateReference in snmplib/snmpusm.c via an SNMPv3 GetBulk request. NOTE: this affects net-snmp packages shipped to end users by multiple Linux distributions, but might not affect an upstream release.

Solution

alpine-linux-upgrade-net-snmp

References

CVE-2019-20892
https://attackerkb.com/topics/CVE-2019-20892
URL-https://security.alpinelinux.org/vuln/CVE-2019-20892
CWE-415

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today