Romain Francoise wrote: > Robert Edmonds <edmo...@debian.org> writes: > > > attached is a backport of this commit to 1.1.1, and a patch to the > > debian package containing the fix. > > Thanks, I'll merge this for the next upload. > > However, I don't think this issue is really "grave". It doesn't > cause data loss, it just results in less data than requested being > captured.
true, it doesn't result in loss of _existing_ data, but i think this bug is certainly serious enough to warrant a stable or security update. for instance, a snapshot length of 1514 actually results in only a maximum of 1498 bytes being captured, so those who think they are doing "full packet capture" actually are not, thus breaking TCP stream reassembly and IP defragmentation, potentially blinding sensors that depend on libpcap. in fact, we could go all the way up to critical :) "makes unrelated software on the system (or the whole system) break, or causes serious data loss, or introduces a security hole on systems where you install the package." -- Robert Edmonds edmo...@debian.org
signature.asc
Description: Digital signature