| commit | a04875b61021b20dced1b122db32d8c7aa5bc747 | |
| author | Jeremy Allison <jra@samba.org> | |
| Wed, 28 May 2014 17:40:27 +0000 (28 10:40 -0700) | ||
| committer | Karolin Seeger <kseeger@samba.org> | |
| Sun, 22 Jun 2014 14:26:14 +0000 (22 16:26 +0200) | ||
| tree | 27b8c65b5c9e4deae73c142967203e73bca6a276 | treesnapshot (tar.gz zip) |
| parent | 33f37c5bad8aa21c41a1511eb7eb65537b230b85 | commitdiff |
s3: nmbd: Fix bug 10633 - nmbd denial of service
The Linux kernel has a bug in that it can give spurious
wakeups on a non-blocking UDP socket for a non-deliverable packet.
When nmbd was changed to use non-blocking sockets it
became vulnerable to a spurious wakeup from poll/epoll.
Fix sys_recvfile() to return on EWOULDBLOCK/EAGAIN.
CVE-2014-0244
Signed-off-by: Jeremy Allison <jra@samba.org>
The Linux kernel has a bug in that it can give spurious
wakeups on a non-blocking UDP socket for a non-deliverable packet.
When nmbd was changed to use non-blocking sockets it
became vulnerable to a spurious wakeup from poll/epoll.
Fix sys_recvfile() to return on EWOULDBLOCK/EAGAIN.
CVE-2014-0244
Signed-off-by: Jeremy Allison <jra@samba.org>
| source3/lib/system.c | diffblobblamehistory |