Version 2.4.1 of Snort, the open-source intrusion detection system, has been released. This version “addresses a bug in TCP SACK processing that could result in a DoS for some text based logging methods.”

The new version can be downloaded from http://www.snort.org/dl/current/snort-2.4.1.tar.gz