[#ZBX-12726] zabbix server crash while establishing snmp session

==25890== Invalid read of size 1
==25890==    at 0x4C31B82: strlen (vg_replace_strmem.c:458)
==25890==    by 0x6D02CDD: strdup (in /usr/lib64/libc-2.25.so)
==25890==    by 0x54532ED: netsnmp_ds_set_string (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5423E4F: snmp_sess_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5424078: snmp_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x42C375: zbx_snmp_open_session (checks_snmp.c:630)
==25890==    by 0x42C375: get_values_snmp (checks_snmp.c:2097)
==25890==    by 0x42CF8A: get_value_snmp (checks_snmp.c:2071)
==25890==    by 0x426DE3: discover_service (discoverer.c:270)
==25890==    by 0x426DE3: process_check (discoverer.c:360)
==25890==    by 0x426DE3: process_checks (discoverer.c:455)
==25890==    by 0x427994: process_rule (discoverer.c:539)
==25890==    by 0x427994: process_discovery (discoverer.c:742)
==25890==    by 0x427994: discoverer_thread (discoverer.c:838)
==25890==    by 0x4913D9: zbx_thread_start (threads.c:128)
==25890==    by 0x421A51: MAIN_ZABBIX_ENTRY (server.c:1067)
==25890==    by 0x488012: daemon_start (daemon.c:392)
==25890==  Address 0x15e6f6e0 is 0 bytes inside a block of size 12 free'd
==25890==    at 0x4C2FD18: free (vg_replace_malloc.c:530)
==25890==    by 0x54532D8: netsnmp_ds_set_string (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5423E0D: snmp_sess_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5424078: snmp_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x42C375: zbx_snmp_open_session (checks_snmp.c:630)
==25890==    by 0x42C375: get_values_snmp (checks_snmp.c:2097)
==25890==    by 0x42CF8A: get_value_snmp (checks_snmp.c:2071)
==25890==    by 0x426DE3: discover_service (discoverer.c:270)
==25890==    by 0x426DE3: process_check (discoverer.c:360)
==25890==    by 0x426DE3: process_checks (discoverer.c:455)
==25890==    by 0x427994: process_rule (discoverer.c:539)
==25890==    by 0x427994: process_discovery (discoverer.c:742)
==25890==    by 0x427994: discoverer_thread (discoverer.c:838)
==25890==    by 0x4913D9: zbx_thread_start (threads.c:128)
==25890==    by 0x421A51: MAIN_ZABBIX_ENTRY (server.c:1067)
==25890==    by 0x488012: daemon_start (daemon.c:392)
==25890==    by 0x419333: main (server.c:819)
==25890==  Block was alloc'd at
==25890==    at 0x4C2EB6B: malloc (vg_replace_malloc.c:299)
==25890==    by 0x6D02CE9: strdup (in /usr/lib64/libc-2.25.so)
==25890==    by 0x54532ED: netsnmp_ds_set_string (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5423E0D: snmp_sess_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5424078: snmp_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x42C375: zbx_snmp_open_session (checks_snmp.c:630)
==25890==    by 0x42C375: get_values_snmp (checks_snmp.c:2097)
==25890==    by 0x42CF8A: get_value_snmp (checks_snmp.c:2071)
==25890==    by 0x426DE3: discover_service (discoverer.c:270)
==25890==    by 0x426DE3: process_check (discoverer.c:360)
==25890==    by 0x426DE3: process_checks (discoverer.c:455)
==25890==    by 0x427994: process_rule (discoverer.c:539)
==25890==    by 0x427994: process_discovery (discoverer.c:742)
==25890==    by 0x427994: discoverer_thread (discoverer.c:838)
==25890==    by 0x4913D9: zbx_thread_start (threads.c:128)
==25890==    by 0x421A51: MAIN_ZABBIX_ENTRY (server.c:1067)
==25890==    by 0x488012: daemon_start (daemon.c:392)
==25890== 
==25890== Invalid read of size 1
==25890==    at 0x4C31B94: strlen (vg_replace_strmem.c:458)
==25890==    by 0x6D02CDD: strdup (in /usr/lib64/libc-2.25.so)
==25890==    by 0x54532ED: netsnmp_ds_set_string (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5423E4F: snmp_sess_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5424078: snmp_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x42C375: zbx_snmp_open_session (checks_snmp.c:630)
==25890==    by 0x42C375: get_values_snmp (checks_snmp.c:2097)
==25890==    by 0x42CF8A: get_value_snmp (checks_snmp.c:2071)
==25890==    by 0x426DE3: discover_service (discoverer.c:270)
==25890==    by 0x426DE3: process_check (discoverer.c:360)
==25890==    by 0x426DE3: process_checks (discoverer.c:455)
==25890==    by 0x427994: process_rule (discoverer.c:539)
==25890==    by 0x427994: process_discovery (discoverer.c:742)
==25890==    by 0x427994: discoverer_thread (discoverer.c:838)
==25890==    by 0x4913D9: zbx_thread_start (threads.c:128)
==25890==    by 0x421A51: MAIN_ZABBIX_ENTRY (server.c:1067)
==25890==    by 0x488012: daemon_start (daemon.c:392)
==25890==  Address 0x15e6f6e1 is 1 bytes inside a block of size 12 free'd
==25890==    at 0x4C2FD18: free (vg_replace_malloc.c:530)
==25890==    by 0x54532D8: netsnmp_ds_set_string (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5423E0D: snmp_sess_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5424078: snmp_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x42C375: zbx_snmp_open_session (checks_snmp.c:630)
==25890==    by 0x42C375: get_values_snmp (checks_snmp.c:2097)
==25890==    by 0x42CF8A: get_value_snmp (checks_snmp.c:2071)
==25890==    by 0x426DE3: discover_service (discoverer.c:270)
==25890==    by 0x426DE3: process_check (discoverer.c:360)
==25890==    by 0x426DE3: process_checks (discoverer.c:455)
==25890==    by 0x427994: process_rule (discoverer.c:539)
==25890==    by 0x427994: process_discovery (discoverer.c:742)
==25890==    by 0x427994: discoverer_thread (discoverer.c:838)
==25890==    by 0x4913D9: zbx_thread_start (threads.c:128)
==25890==    by 0x421A51: MAIN_ZABBIX_ENTRY (server.c:1067)
==25890==    by 0x488012: daemon_start (daemon.c:392)
==25890==    by 0x419333: main (server.c:819)
==25890==  Block was alloc'd at
==25890==    at 0x4C2EB6B: malloc (vg_replace_malloc.c:299)
==25890==    by 0x6D02CE9: strdup (in /usr/lib64/libc-2.25.so)
==25890==    by 0x54532ED: netsnmp_ds_set_string (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5423E0D: snmp_sess_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5424078: snmp_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x42C375: zbx_snmp_open_session (checks_snmp.c:630)
==25890==    by 0x42C375: get_values_snmp (checks_snmp.c:2097)
==25890==    by 0x42CF8A: get_value_snmp (checks_snmp.c:2071)
==25890==    by 0x426DE3: discover_service (discoverer.c:270)
==25890==    by 0x426DE3: process_check (discoverer.c:360)
==25890==    by 0x426DE3: process_checks (discoverer.c:455)
==25890==    by 0x427994: process_rule (discoverer.c:539)
==25890==    by 0x427994: process_discovery (discoverer.c:742)
==25890==    by 0x427994: discoverer_thread (discoverer.c:838)
==25890==    by 0x4913D9: zbx_thread_start (threads.c:128)
==25890==    by 0x421A51: MAIN_ZABBIX_ENTRY (server.c:1067)
==25890==    by 0x488012: daemon_start (daemon.c:392)
==25890== 
==25890== Invalid read of size 8
==25890==    at 0x4C32FF0: memcpy@GLIBC_2.2.5 (vg_replace_strmem.c:1021)
==25890==    by 0x54532ED: netsnmp_ds_set_string (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5423E4F: snmp_sess_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5424078: snmp_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x42C375: zbx_snmp_open_session (checks_snmp.c:630)
==25890==    by 0x42C375: get_values_snmp (checks_snmp.c:2097)
==25890==    by 0x42CF8A: get_value_snmp (checks_snmp.c:2071)
==25890==    by 0x426DE3: discover_service (discoverer.c:270)
==25890==    by 0x426DE3: process_check (discoverer.c:360)
==25890==    by 0x426DE3: process_checks (discoverer.c:455)
==25890==    by 0x427994: process_rule (discoverer.c:539)
==25890==    by 0x427994: process_discovery (discoverer.c:742)
==25890==    by 0x427994: discoverer_thread (discoverer.c:838)
==25890==    by 0x4913D9: zbx_thread_start (threads.c:128)
==25890==    by 0x421A51: MAIN_ZABBIX_ENTRY (server.c:1067)
==25890==    by 0x488012: daemon_start (daemon.c:392)
==25890==    by 0x419333: main (server.c:819)
==25890==  Address 0x15e6f6e0 is 0 bytes inside a block of size 12 free'd
==25890==    at 0x4C2FD18: free (vg_replace_malloc.c:530)
==25890==    by 0x54532D8: netsnmp_ds_set_string (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5423E0D: snmp_sess_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5424078: snmp_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x42C375: zbx_snmp_open_session (checks_snmp.c:630)
==25890==    by 0x42C375: get_values_snmp (checks_snmp.c:2097)
==25890==    by 0x42CF8A: get_value_snmp (checks_snmp.c:2071)
==25890==    by 0x426DE3: discover_service (discoverer.c:270)
==25890==    by 0x426DE3: process_check (discoverer.c:360)
==25890==    by 0x426DE3: process_checks (discoverer.c:455)
==25890==    by 0x427994: process_rule (discoverer.c:539)
==25890==    by 0x427994: process_discovery (discoverer.c:742)
==25890==    by 0x427994: discoverer_thread (discoverer.c:838)
==25890==    by 0x4913D9: zbx_thread_start (threads.c:128)
==25890==    by 0x421A51: MAIN_ZABBIX_ENTRY (server.c:1067)
==25890==    by 0x488012: daemon_start (daemon.c:392)
==25890==    by 0x419333: main (server.c:819)
==25890==  Block was alloc'd at
==25890==    at 0x4C2EB6B: malloc (vg_replace_malloc.c:299)
==25890==    by 0x6D02CE9: strdup (in /usr/lib64/libc-2.25.so)
==25890==    by 0x54532ED: netsnmp_ds_set_string (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5423E0D: snmp_sess_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5424078: snmp_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x42C375: zbx_snmp_open_session (checks_snmp.c:630)
==25890==    by 0x42C375: get_values_snmp (checks_snmp.c:2097)
==25890==    by 0x42CF8A: get_value_snmp (checks_snmp.c:2071)
==25890==    by 0x426DE3: discover_service (discoverer.c:270)
==25890==    by 0x426DE3: process_check (discoverer.c:360)
==25890==    by 0x426DE3: process_checks (discoverer.c:455)
==25890==    by 0x427994: process_rule (discoverer.c:539)
==25890==    by 0x427994: process_discovery (discoverer.c:742)
==25890==    by 0x427994: discoverer_thread (discoverer.c:838)
==25890==    by 0x4913D9: zbx_thread_start (threads.c:128)
==25890==    by 0x421A51: MAIN_ZABBIX_ENTRY (server.c:1067)
==25890==    by 0x488012: daemon_start (daemon.c:392)
==25890== 
==25890== Invalid read of size 2
==25890==    at 0x4C32F60: memcpy@GLIBC_2.2.5 (vg_replace_strmem.c:1021)
==25890==    by 0x54532ED: netsnmp_ds_set_string (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5423E4F: snmp_sess_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5424078: snmp_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x42C375: zbx_snmp_open_session (checks_snmp.c:630)
==25890==    by 0x42C375: get_values_snmp (checks_snmp.c:2097)
==25890==    by 0x42CF8A: get_value_snmp (checks_snmp.c:2071)
==25890==    by 0x426DE3: discover_service (discoverer.c:270)
==25890==    by 0x426DE3: process_check (discoverer.c:360)
==25890==    by 0x426DE3: process_checks (discoverer.c:455)
==25890==    by 0x427994: process_rule (discoverer.c:539)
==25890==    by 0x427994: process_discovery (discoverer.c:742)
==25890==    by 0x427994: discoverer_thread (discoverer.c:838)
==25890==    by 0x4913D9: zbx_thread_start (threads.c:128)
==25890==    by 0x421A51: MAIN_ZABBIX_ENTRY (server.c:1067)
==25890==    by 0x488012: daemon_start (daemon.c:392)
==25890==    by 0x419333: main (server.c:819)
==25890==  Address 0x15e6f6e8 is 8 bytes inside a block of size 12 free'd
==25890==    at 0x4C2FD18: free (vg_replace_malloc.c:530)
==25890==    by 0x54532D8: netsnmp_ds_set_string (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5423E0D: snmp_sess_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5424078: snmp_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x42C375: zbx_snmp_open_session (checks_snmp.c:630)
==25890==    by 0x42C375: get_values_snmp (checks_snmp.c:2097)
==25890==    by 0x42CF8A: get_value_snmp (checks_snmp.c:2071)
==25890==    by 0x426DE3: discover_service (discoverer.c:270)
==25890==    by 0x426DE3: process_check (discoverer.c:360)
==25890==    by 0x426DE3: process_checks (discoverer.c:455)
==25890==    by 0x427994: process_rule (discoverer.c:539)
==25890==    by 0x427994: process_discovery (discoverer.c:742)
==25890==    by 0x427994: discoverer_thread (discoverer.c:838)
==25890==    by 0x4913D9: zbx_thread_start (threads.c:128)
==25890==    by 0x421A51: MAIN_ZABBIX_ENTRY (server.c:1067)
==25890==    by 0x488012: daemon_start (daemon.c:392)
==25890==    by 0x419333: main (server.c:819)
==25890==  Block was alloc'd at
==25890==    at 0x4C2EB6B: malloc (vg_replace_malloc.c:299)
==25890==    by 0x6D02CE9: strdup (in /usr/lib64/libc-2.25.so)
==25890==    by 0x54532ED: netsnmp_ds_set_string (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5423E0D: snmp_sess_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x5424078: snmp_open (in /usr/lib64/libnetsnmp.so.30.0.3)
==25890==    by 0x42C375: zbx_snmp_open_session (checks_snmp.c:630)
==25890==    by 0x42C375: get_values_snmp (checks_snmp.c:2097)
==25890==    by 0x42CF8A: get_value_snmp (checks_snmp.c:2071)
==25890==    by 0x426DE3: discover_service (discoverer.c:270)
==25890==    by 0x426DE3: process_check (discoverer.c:360)
==25890==    by 0x426DE3: process_checks (discoverer.c:455)
==25890==    by 0x427994: process_rule (discoverer.c:539)
==25890==    by 0x427994: process_discovery (discoverer.c:742)
==25890==    by 0x427994: discoverer_thread (discoverer.c:838)
==25890==    by 0x4913D9: zbx_thread_start (threads.c:128)
==25890==    by 0x421A51: MAIN_ZABBIX_ENTRY (server.c:1067)
==25890==    by 0x488012: daemon_start (daemon.c:392)
[ZBX-12726] zabbix server crash while establishing snmp session Created: 2017 Sep 14 Updated: 2024 Apr 10 Resolved: 2017 Sep 21
Status:	Closed
Project:	ZABBIX BUGS AND ISSUES
Component/s:	Server (S)
Affects Version/s:	2.2.19, 3.0.10, 3.2.7, 3.4.1, 4.0.0alpha1
Fix Version/s:	None
[ZBX-12726] zabbix server crash while establishing snmp session Created: 2017 Sep 14 Updated: 2024 Apr 10 Resolved: 2017 Sep 21
