vulnerability

Amazon Linux AMI: CVE-2017-16820: Security patch for collectd (ALAS-2018-940)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
10	(AV:N/AC:L/Au:N/C:C/I:C/A:C)	2017-11-14	2018-01-05	2022-10-14

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

2017-11-14

Added

2018-01-05

Modified

2022-10-14

Description

The csnmp_read_table function in snmp.c in the SNMP plugin in collectd before 5.6.3 is susceptible to a double free in a certain error case, which could lead to a crash (or potentially have other impact).

Solution

amazon-linux-upgrade-collectd

References

REDHAT-RHSA-2018:0252
REDHAT-RHSA-2018:0299
REDHAT-RHSA-2018:0560
REDHAT-RHSA-2018:1605
REDHAT-RHSA-2018:2615
AMAZON-ALAS-2018-940
GENTOO-GLSA-201803-10
NVD-CVE-2017-16820

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today