search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
(parent: 965fe0e) | patch
CVE-2021-3738 s4:rpc_server/lsa: make use of dcesrv_samdb_connect_as_user() helper
commit2a159e6f036db497bd976e2d165db5c187a09cf6
authorStefan Metzmacher <metze@samba.org>
Thu, 5 Aug 2021 12:24:25 +0000 (5 14:24 +0200)
committerJule Anger <janger@samba.org>
Tue, 9 Nov 2021 19:45:34 +0000 (9 19:45 +0000)
tree34aa599e1d2d189b7cfe48a0b46abd2371762a52tree | snapshot (tar.gz zip)
parent965fe0e906263bffd6fb994263e51a8435f155d5commit | diff
CVE-2021-3738 s4:rpc_server/lsa: make use of dcesrv_samdb_connect_as_user() helper

This avoids a crash that's triggered by windows clients using
handles from OpenPolicy[2]() on across multiple connections within
an association group.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14468

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
source4/rpc_server/lsa/lsa_init.c diff | blob | blame | history
Samba GIT mirror