| commit | 99eea67a5a1114e499ece00f8b68ccbf2ec4ae75 | |
| author | Gerald (Jerry) Carter <jerry@samba.org> | |
| Thu, 15 Nov 2007 02:54:44 +0000 (14 20:54 -0600) | ||
| committer | Gerald (Jerry) Carter <jerry@samba.org> | |
| Thu, 15 Nov 2007 16:47:28 +0000 (15 10:47 -0600) | ||
| tree | ca71efc198a1c5bf0ff2a57f12574a25024117e8 | treesnapshot (tar.gz zip) |
| parent | a7c6fe1e3cb4d66a48f43a49fe31778adace2332 | commitdiff |
Fix for CVE-2007-4572
== Subject: Stack buffer overflow in nmbd's logon
== request processing.
==
== CVE ID#: CVE-2007-4572
==
== Versions: Samba 3.0.0 - 3.0.26a (inclusive)
...
Samba developers have discovered what is believed to be
a non-exploitable buffer over in nmbd during the processing
of GETDC logon server requests. This code is only used
when the Samba server is configured as a Primary or Backup
Domain Controller.
== Subject: Stack buffer overflow in nmbd's logon
== request processing.
==
== CVE ID#: CVE-2007-4572
==
== Versions: Samba 3.0.0 - 3.0.26a (inclusive)
...
Samba developers have discovered what is believed to be
a non-exploitable buffer over in nmbd during the processing
of GETDC logon server requests. This code is only used
when the Samba server is configured as a Primary or Backup
Domain Controller.
| source/lib/charcnv.c | diffblobblamehistory | |
| source/libsmb/ntlmssp_parse.c | diffblobblamehistory | |
| source/nmbd/nmbd_processlogon.c | diffblobblamehistory | |
| source/smbd/lanman.c | diffblobblamehistory |