___ http://www.mail2arabia.com
: http://www.debian.org/security/2004/dsa-530
There is a buffer overflow in l2tpd, in control.c/write_packet().
The following diff is from debian woody l2tpd-0.67, but it applies to 0.69
as well:
--- l2tpd-0.67.orig/control.c
+++ l2tpd-0.67/control.c
@@ -1575,6 +1575,15 @@
wbuf[pos
--On Donnerstag, Juli 22, 2004 08:55:09 +0200 Jean-Francois Dive
[EMAIL PROTECTED] wrote:
I posted this patch some time ago when i released the debian
package. Tx anyway :)
ok, old news then. Is there an archive of l2tpd-devel? The one at
http://l2tpd.graffl.net seems to have had no updates
Matthias Ferdinand wrote:
ok, old news then. Is there an archive of l2tpd-devel? The one at
http://l2tpd.graffl.net seems to have had no updates since Jan 19.
http://www.mail-archive.com/l2tpd-devel%40l2tpd.org/maillist.html
--
Jacco de Leeuw mailto:[EMAIL PROTECTED]
Hello,
I haven't seen anything related to this buffer overflow
on this list, so I am going to post some info:
Debian advisory: http://www.debian.org/security/2004/dsa-530
There is a buffer overflow in l2tpd, in control.c/write_packet().
The following diff is from debian woody l2tpd-0.67