Red Hat Bugzilla – Bug 232109
CVE-2007-1398: snort DoS
Last modified: 2007-11-30 17:11:59 EST
"The frag3 preprocessor in Snort 220.127.116.11, 18.104.22.168, and 2.7.0 beta, when
configured for inline use on Linux without the ip_conntrack module loaded,
allows remote attackers to cause a denial of service (segmentation fault and
application crash) via certain UDP packets produced by send_morefrag_packet and
FC-5 and 6 are at 22.214.171.124 at the moment.
Thanks for the report. we don't build inline mode as it fails to build.