USN-7944-1: Net-SNMP vulnerability

USN-7944-1: Net-SNMP vulnerability

Publication date : 7 January 2026
Overview: Net-SNMP could be made to crash if it received specially crafted input.

Packages
net-snmp - SNMP (Simple Network Management Protocol) server and applications

Details
Bahae Bahrini discovered that Net-SNMP could be made to write out of
bounds. If a user or an automated system were tricked into opening a
specially crafted input file, a remote attacker could possibly use
this issue to cause a denial of service.

Update instructions
The problem can be corrected by updating your system to the following package versions:

25.10 questing

• libsnmp40t64 – 5.9.4+dfsg-2ubuntu2.1
• snmp – 5.9.4+dfsg-2ubuntu2.1
• snmpd – 5.9.4+dfsg-2ubuntu2.1

25.04 plucky

• libsnmp40t64 – 5.9.4+dfsg-1.1ubuntu7.1
• snmp – 5.9.4+dfsg-1.1ubuntu7.1
• snmpd – 5.9.4+dfsg-1.1ubuntu7.1

24.04 LTS noble

• libsnmp40t64 – 5.9.4+dfsg-1.1ubuntu3.2
• snmp – 5.9.4+dfsg-1.1ubuntu3.2
• snmpd – 5.9.4+dfsg-1.1ubuntu3.2

22.04 LTS jammy

• libsnmp40 – 5.9.1+dfsg-1ubuntu2.9
• snmp – 5.9.1+dfsg-1ubuntu2.9
• snmpd – 5.9.1+dfsg-1ubuntu2.9

20.04 LTS focal

• libsnmp35 – 5.8+dfsg-2ubuntu2.9+esm2
• snmp – 5.8+dfsg-2ubuntu2.9+esm2
• snmpd – 5.8+dfsg-2ubuntu2.9+esm2

18.04 LTS bionic

• libsnmp30 – 5.7.3+dfsg-1.8ubuntu3.8+esm1
• snmp – 5.7.3+dfsg-1.8ubuntu3.8+esm1
• snmpd – 5.7.3+dfsg-1.8ubuntu3.8+esm1

16.04 LTS xenial

• libsnmp30 – 5.7.3+dfsg-1ubuntu4.6+esm2
• snmp – 5.7.3+dfsg-1ubuntu4.6+esm2
• snmpd – 5.7.3+dfsg-1ubuntu4.6+esm2

14.04 LTS trusty

• libsnmp30 – 5.7.2~dfsg-8.1ubuntu3.3+esm4
• snmp – 5.7.2~dfsg-8.1ubuntu3.3+esm4
• snmpd – 5.7.2~dfsg-8.1ubuntu3.3+esm4