-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 29 May 2026 15:18:47 +0200 Source: lwip Binary: liblwip-doc Architecture: all Version: 2.2.1+dfsg1-1+deb13u1 Distribution: trixie Urgency: medium Maintainer: all / amd64 / i386 Build Daemon (x86-grnet-03) Changed-By: Joan Lledó Description: liblwip-doc - small implementation of the TCP/IP protocol suite - documentation Changes: lwip (2.2.1+dfsg1-1+deb13u1) trixie; urgency=medium . * Fix CVE-2026-8836: snmpv3: fix handling packets with invalid msgAuthenticationParameters length * A remote attacker can send a crafted msgAuthenticationParameters field to overflow a stack buffer in snmp_parse_inbound_frame(). * Re-enables the bounds check on msgAuthenticationParameters length in snmp_parse_inbound_frame() and clamps the copy length to SNMP_V3_MAX_AUTH_PARAM_LENGTH instead of using the attacker-controlled TLV value length * https://savannah.nongnu.org/bugs/?68194 Checksums-Sha1: ffaba6d8bf7e8c530d0dba0a86a8b782981c8b7d 779200 liblwip-doc_2.2.1+dfsg1-1+deb13u1_all.deb 1fa514ccce8280338f162d88c901707dfda7b145 7008 lwip_2.2.1+dfsg1-1+deb13u1_all-buildd.buildinfo Checksums-Sha256: b215ab028126c99b108a8e40e18f19c19ec26a1bbec98d4d66de6b0ce8be04f2 779200 liblwip-doc_2.2.1+dfsg1-1+deb13u1_all.deb f14c1d21015b44acdad00a2663b47d0b54b210d443e2419f09fb91db36cdf1be 7008 lwip_2.2.1+dfsg1-1+deb13u1_all-buildd.buildinfo Files: dddc51a187691c170b69a32556995029 779200 doc optional liblwip-doc_2.2.1+dfsg1-1+deb13u1_all.deb ede2ce7887253916048ade89c02111eb 7008 libs optional lwip_2.2.1+dfsg1-1+deb13u1_all-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE5ZI1lXv5WjhHIVjsN8Ugyu9dQiQFAmpZ+K4ACgkQN8Ugyu9d QiQqhRAAwY4yeOapj6DDm3V9gXL1coyGf7yVylfmu4dhB4D3AviMimsK0+13mrdv pp1q7U6VOqz8OOll2zE0f4cMNv5s73/Vw6bvQ7pQtKUMiPBRTreF3B/J1AcCd8Eg kWge4NO3ih1q8UcvL/MaMlYuLtqckIZGKIqED75tDtBU1+CSHxLmkPogL84nAG72 7NoZB+V/G2M4pPowkjP6VM2VYly8tNDhbxkuDHdjWQGU4OXCm6I4TsLZKYeBdLkK P1WAAA74vmIJ3Vq1lUoXLYXVAdPfGZnToi00kJiI++fVCMfwFcix1nLFqlq/lxJB 4bQvXReb2eTCbB2PTfBnp4C3DCZhN2Rb46UtnBSNGYBDROIpBBniCgm/WXaZpl0i +MZsjnjD5+oKJiGuawijPbC+eqoTPR8PB/GaywGUcuCXwbMm14uJd1birmz7NN/d dY0+n+NJFX7doIGBgz+0jBuOS8qsIGvgmtvagcevinhZ5SxdDqzuMIY0KL9s4XPW 9H/WA0naE9h3hUtdBGSoz0w6G/EW4V9sXiJ+yB3WBWYgHuUq6nfWMJ1eCK2s6Y1K gDcBe1i7MBVMWTZEoGX4oMki7YtoOUCrYDFz2DeIeMe4PdnSSQ3vARAWyn/wtS3E psFCA2Ez+slAj/WV4H+itvAp1WPPDpf6MtvO8igDXIHjxXTJiH0= =FSsa -----END PGP SIGNATURE-----