oss-sec mailing list archives
CVE Request -- Snort - 2.8.5.1
From: Jan Lieskovsky <jlieskov () redhat com>
Date: Sun, 25 Oct 2009 19:32:36 +0100
Hello Steve, vendors, Snort upstream has released 2.8.5.1 version fixing one security issue: DoS (crash) while printing specially-crafted IPv6 packet using the -v option References: ----------- http://dl.snort.org/snort-current/release_notes_2851.txt http://vrt-sourcefire.blogspot.com/2009/10/snort-2851-release.html http://secunia.com/advisories/37135/ PoC: http://seclists.org/fulldisclosure/2009/Oct/299 ---- Credit: Laurent GaffiƩ ------- Could you allocate a new CVE identifier? Thanks && Regards, Jan. -- Jan iankko Lieskovsky / Red Hat Security Response Team
Current thread:
- CVE Request -- Snort - 2.8.5.1 Jan Lieskovsky (Oct 25)
- SANS: Security Thought LeadersRe: [oss-security] CVE Request -- Snort - 2.8.5.1 Mark J Cox (Oct 25)