78892 – net-wireless/kismet: Potential ethereal vulnerability

Bug 78892 - net-wireless/kismet: Potential ethereal vulnerability

Summary: net-wireless/kismet: Potential ethereal vulnerability

Status:	RESOLVED INVALID

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Auditing (show other bugs)
Hardware:	All All

Importance:	High normal (vote)
Assignee:	Gentoo Security

URL:	http://bugs.gentoo.org/show_bug.cgi?i...
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2005-01-20 19:12 UTC by Luke Macken (RETIRED)
Modified:	2005-01-20 20:15 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Luke Macken (RETIRED) gentoo-dev

2005-01-20 19:12:28 UTC

Apparently kismet uses the ethereal wiretap library, and with the recent ethereal security vulnerabilities latley, kismet may be vulnerable as well.  See bug #78559 for reference.

audit team, please verify.

Comment 1 solar (RETIRED) gentoo-dev

2005-01-20 19:30:05 UTC

I think we should contact upstream on this.

Comment 2 Luke Macken (RETIRED) gentoo-dev

2005-01-20 19:57:10 UTC

Sent an email upstream to verify.

Comment 3 Luke Macken (RETIRED) gentoo-dev

2005-01-20 20:15:31 UTC

<upstream>
I'll take a look.  Typically, the vulnerabilities in ethereal are in the
packet dissectors - wiretap is like pcap, all it does is load packets
and pass them.  It's not even used by default or for normal operation in
kismet -- it's only needed for transparently loading compressed pcap
files, or loading non-pcap files that happen to have 802.11 encoding
that wiretap understands that pcap doesn't.

Looking at that page - thats only the dissectors, which aren't exposed
in the library.  Nothing that affects kismet, but thanks for the
concern.

-m
</upstream>