> Hi, > > I have had a look at the list archives and I can't seem to find any sort > of response or reference to the following Bugtraq post: > http://www.securityfocus.com/archive/1/365211 > > It appears l2tpd 0.69 is still the latest release, or am I looking in the > wrong spot? > > I am not a programmer, I am a network engineer, but does this patch > resolve the issue? > > --- l2tpd-0.69/control.c 2002-04-11 08:09:33.000000000 +1200 > +++ l2tpd-0.69/control.c 2004-06-13 02:57:03.000000000 +1200 > @@ -1508,5 +1508,5 @@ > int x; > unsigned char e; > int err; > - static unsigned char wbuf[MAX_RECV_SIZE]; > + static unsigned char wbuf[MAX_RECV_SIZE*2]; > int pos = 0; > > if (c->fd < 0)
any reactions from developers or maintainers? -- ------------------------------------- Marek Cervenka Centrum Vypocetni Techniky CVT - http://cvt.fpf.slu.cz FPF SLU OPAVA - http://www.fpf.slu.cz =====================================