[bug #54886] Issue with SNMP app which can lead to controller restart

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

[bug #54886] Issue with SNMP app which can lead to controller restart

madhu
URL:
  <https://savannah.nongnu.org/bugs/?54886>

                 Summary: Issue with SNMP app which can lead to controller
restart
                 Project: lwIP - A Lightweight TCP/IP stack
            Submitted by: ognjenbjelica
            Submitted on: Tue 23 Oct 2018 01:25:17 PM UTC
                Category: None
                Priority: 5 - Normal
                  Status: None
                 Privacy: Public
             Assigned to: None
        Originator Email:
             Open/Closed: Open
         Discussion Lock: Any
         Planned Release: None

    _______________________________________________________

Details:

Thank you for making and maintaing LWIP stack for free. While we were using
SNMP app, one of the requirements was to support sending traps in v1 and v2c.
Since original app wasn’t providing these functionalities, we have
implemented them as a patch. Now SNMP app has support for sending traps,
notifications and informs. For informs we have added callback, so main app can
have feedback.
While testing we were testing the SNMP app, we have found one critical bug
which caused controller to go to restart state. When you define MIB tree, with
some read-only or some write-only nodes, or you just don’t need testing
function and leave one of them to be nullptr. In that case, with current
implementation of SNMP app, you have create a security vulnerability. Because,
if user tries to call SET on read-only or GET on write-only node, SNMP app
will go through MIB tree and find corresponding function pointer (in this case
nullptr) and than it would call it - which would result in controller
restart.
Please feel free to contact me for any additional info.

Best Regards,
Ognjen Bjelica




    _______________________________________________________

Reply to this item at:

  <https://savannah.nongnu.org/bugs/?54886>

_______________________________________________
  Message sent via Savannah
  https://savannah.nongnu.org/


_______________________________________________
lwip-devel mailing list
[hidden email]
https://lists.nongnu.org/mailman/listinfo/lwip-devel
Reply | Threaded
Open this post in threaded view
|

[bug #54886] Issue with SNMP app which can lead to controller restart

madhu
Update of bug #54886 (project lwip):

                  Status:                    None => Fixed                  
             Open/Closed:                    Open => Closed                
            lwIP version:                    None => git head              

    _______________________________________________________

Follow-up Comment #6:

Fixed in 2e7b4573a573803e3865085461b424443bb411f9

Thanks for reporting!

    _______________________________________________________

Reply to this item at:

  <https://savannah.nongnu.org/bugs/?54886>

_______________________________________________
  Message sent via Savannah
  https://savannah.nongnu.org/


_______________________________________________
lwip-devel mailing list
[hidden email]
https://lists.nongnu.org/mailman/listinfo/lwip-devel