Libnids v1.17 and below contains memory corruption vulnerabilities in the TCP stream reassembly code. Applications such as dsniff which are linked with libnids can be remotely exploited by sending overly long, specially crafted TCP packets. Fix available here.
fb5edefbf4ddd44e195c518d2f20fc7a815a6c6f1699e73b57c10278c89efd11