Lukaszmatczak

**Name of the Vulnerable Software and Affected Versions** Geth versions prior to 1.9.25 **Description** A denial-of-service issue can cause a LES server crash via a malicious `GetProofsV2` request from a connected LES client. This issue only affects users who have explicitly enabled the LES server. Disabling the LES server prevents the exploit. **Recommendations** For versions prior to 1.9.25, update to version 1.9.25 or later to resolve the issue. As a temporary workaround, consider disabling the LES server to prevent the exploit. Manually applying the patch from https://github.com/ethereum/go-ethereum/pull/21896 can also fix the vulnerability.