thr3ads.net - Secure testing team - [Secure-testing-team] Bug#553584: CVE-2009-3641: DoS while printing specially-crafted IPv6 packet using the -v option [Nov 2009]

If this information is useful, please help other people find it:
Share via:

Giuseppe Iuculano

2009-Nov-01 09:41 UTC

[Secure-testing-team] Bug#553584: CVE-2009-3641: DoS while printing specially-crafted IPv6 packet using the -v option

Package: snort
Severity: grave
Tags: security

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1



Hi,
the following CVE (Common Vulnerabilities & Exposures) id was
published for snort.

CVE-2009-3641[0]:
| Snort before 2.8.5.1, when the -v option is enabled, allows remote
| attackers to cause a denial of service (application crash) via a
| crafted IPv6 packet that uses the (1) TCP or (2) ICMP protocol.

If you fix the vulnerability please also make sure to include the
CVE id in your changelog entry.

For further information see:

[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3641
    http://security-tracker.debian.org/tracker/CVE-2009-3641


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iEYEARECAAYFAkrtV7wACgkQNxpp46476apJ9ACfVHrzxEV9NLxvj2EgQCqjOEt7
hlQAnjEbN3S6I6qrDwJ00vFr7L8JtE2C
=Ozi9
-----END PGP SIGNATURE-----

Secure testing team - Nov 2009 - Bug#553584: CVE-2009-3641: DoS while printing specially-crafted IPv6 packet using the -v option

[Secure-testing-team] Bug#553584: CVE-2009-3641: DoS while printing specially-crafted IPv6 packet using the -v option