Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 436
Alerts This Week
Warning Icon 1 436

Gentoo: GLSA-200702-03 Normal Severity: Snort Denial of Service

gentoo
Calendar Grey February 13, 2007
Dist Gentoo Esm H88
Gentoo alert highlights Snort's vulnerability to Denial of Service attacks linked to rule matching deficiencies; users advised to update.
Snort contains a vulnerability in the rule matching algorithm that could result in a Denial of Service.

Summary

Gentoo Linux Security Advisory GLSA 200702-03 https://security.gentoo.org/ Severity: Normal Title: Snort: Denial of Service Date: February 13, 2007 Bugs: #161632 ID: 200702-03

Synopsis ======= Snort contains a vulnerability in the rule matching algorithm that could result in a Denial of Service.
Background ========= Snort is a widely deployed intrusion detection program.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-analyzer/snort < 2.6.1.2 >= 2.6.1.2
========== Randy Smith, Christian Estan and Somesh Jha discovered that the rule matching algorithm of Snort can be exploited in a way known as a "backtracking attack" to perform numerous time-consuming ope...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround