Snort Advisory
Date: 2006-09-27

Sourcefire is aware of an issue in Snort that can produce segmentation 
faults in certain circumstances.  This issue occurs when Snort is 
handling a large number of sessions and the configuration item 
cache_clean_percent is set to anything other than 0.

Open-source Snort users who have not manually modified the default 
configuration for stream4 are unaffected by this issue.  Only users who 
have added the cache_clean_percent option to their stream4 configuration 
are affected. They should change their configuration to use the 
parameter cache_clean_sessions instead.

The latest CVS source downloads for the Snort 2.6.1, 2.6.0, and 2.4 
branches now contain a fix for this issue.  The next version of Snort 
will contain this fix. Thanks to Eric Hines from Applied Watch for 
reporting the issue.


-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys -- and earn cash
https://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV