Apparently kismet uses the ethereal wiretap library, and with the recent ethereal security vulnerabilities latley, kismet may be vulnerable as well. See bug #78559 for reference. audit team, please verify.
I think we should contact upstream on this.
Sent an email upstream to verify.
<upstream> I'll take a look. Typically, the vulnerabilities in ethereal are in the packet dissectors - wiretap is like pcap, all it does is load packets and pass them. It's not even used by default or for normal operation in kismet -- it's only needed for transparently loading compressed pcap files, or loading non-pcap files that happen to have 802.11 encoding that wiretap understands that pcap doesn't. Looking at that page - thats only the dissectors, which aren't exposed in the library. Nothing that affects kismet, but thanks for the concern. -m </upstream>