VPN Server 1.2-2427

Severity
Security.impact_level_
Status
Resolved

Description

In VPN Server 1.2-2427, OpenVPN was updated to version 2.3.6 to address a vulnerability that allows remote authenticated users to cause a denial of service (server crash) via a small control channel packet (CVE-2014-8104).

Resolution

To fix this security issue, please to go to DSM > Package Center and install the latest VPN Server update to protect your Synology NAS from malicious attacks.