[Secure-testing-team] Bug#553584: CVE-2009-3641: DoS while printing specially-crafted IPv6 packet using the -v option
Giuseppe Iuculano
iuculano at debian.org
Sun Nov 1 09:41:20 UTC 2009
Package: snort
Severity: grave
Tags: security
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi,
the following CVE (Common Vulnerabilities & Exposures) id was
published for snort.
CVE-2009-3641[0]:
| Snort before 2.8.5.1, when the -v option is enabled, allows remote
| attackers to cause a denial of service (application crash) via a
| crafted IPv6 packet that uses the (1) TCP or (2) ICMP protocol.
If you fix the vulnerability please also make sure to include the
CVE id in your changelog entry.
For further information see:
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3641
http://security-tracker.debian.org/tracker/CVE-2009-3641
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEARECAAYFAkrtV7wACgkQNxpp46476apJ9ACfVHrzxEV9NLxvj2EgQCqjOEt7
hlQAnjEbN3S6I6qrDwJ00vFr7L8JtE2C
=Ozi9
-----END PGP SIGNATURE-----
More information about the Secure-testing-team
mailing list