| commit | 331ae420e9fc10b56b3abdcda1c5d98f18f017d4 | |
| author | Jeremy Allison <jra@samba.org> | |
| Wed, 28 May 2014 17:40:27 +0000 (28 10:40 -0700) | ||
| committer | Karolin Seeger <kseeger@samba.org> | |
| Mon, 23 Jun 2014 05:58:57 +0000 (23 07:58 +0200) | ||
| tree | ca150488b30433bc531ad250d937ddce2ab746cf | treesnapshot (tar.gz zip) |
| parent | 3b5dcee460a14fd1af5dc931ad010e39b4e7326f | commitdiff |
s3: nmbd: Fix bug 10633 - nmbd denial of service
The Linux kernel has a bug in that it can give spurious
wakeups on a non-blocking UDP socket for a non-deliverable packet.
When nmbd was changed to use non-blocking sockets it
became vulnerable to a spurious wakeup from poll/epoll.
Fix sys_recvfile() to return on EWOULDBLOCK/EAGAIN.
CVE-2014-0244
Signed-off-by: Jeremy Allison <jra@samba.org>
The Linux kernel has a bug in that it can give spurious
wakeups on a non-blocking UDP socket for a non-deliverable packet.
When nmbd was changed to use non-blocking sockets it
became vulnerable to a spurious wakeup from poll/epoll.
Fix sys_recvfile() to return on EWOULDBLOCK/EAGAIN.
CVE-2014-0244
Signed-off-by: Jeremy Allison <jra@samba.org>
| source3/lib/system.c | diffblobblamehistory |