On Sun, 5 Oct 2008 08:25:15 pm Moritz Muehlenhoff wrote: > On Wed, May 28, 2008 at 12:43:54AM +0200, Javier Fernández-Sanguino Peña wrote: > > severity 483160 important > > thanks > > > > On Wed, May 28, 2008 at 01:11:44AM +1000, Steffen Joeris wrote: > > > Package: snort > > > Severity: grave > > > Tags: security > > > Justification: user security hole > > > > This is hardly a grave bug. Bypassing IDS has been possible since they > > were first invented, after all they are just a 'network signature > > matcher'. > > > > I'm reducing the severity but keeping the security tag. > > What's the status? Is there a patch for Lenny? Thanks for reminding me. This[0] should do it for lenny. Javier can you confirm that it works? I haven't tested it yet.
Cheers Steffen [0]: http://cvs.snort.org/viewcvs.cgi/snort/src/preprocessors/spp_frag3.c.diff?r1=text&tr1=1.46.2.4&r2=text&tr2=1.46.2.5&diff_format=h
signature.asc
Description: This is a digitally signed message part.
