>>>>> On Sat, 1 Nov 2008 20:47:38 +1100, Steffen Joeris said:

SJ> In Debian stable, we are shipping version 5.2.3 and I was wondering,
SJ> if it is vulnerable as well.

Yes, it is vulnerable. Note that we released a as well to
update that line of code. Any chance you can update to as a fix
(is there a reason you're sticking with 5.2.3?).

(the code is different but the issue is still there)
Wes Hardaker
Sparta, Inc.

This SF.Net email is sponsored by the Moblin Your Move Developer's challenge
Build the coolest Linux based applications with Moblin SDK & win great prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
Net-snmp-coders mailing list