Release 2.1.21 of L2TPNS

Security [CVE-2006-5873]: Rhys Kidd identified a vulnerability in the handling of heartbeat packets. Drop oversize heartbeat packets.

Note: If clustering is not being used, simply dropping packets to UDP port 32792 on the server is recommended and will avoid the vulnerability.

Posted by Brendan O'Dea 2006-12-18

Log in to post a comment.

Get latest updates about Open Source Projects, Conferences and News.

Sign up for the SourceForge newsletter:

No, thanks