search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
(parent: caf3d32) | patch
CVE-2021-3738 s4:rpc_server/lsa: make use of dcesrv_samdb_connect_as_user() helper
commit79d62d83e23fe5969cb432262ab9addad59a3b8d
authorStefan Metzmacher <metze@samba.org>
Thu, 5 Aug 2021 12:24:25 +0000 (5 14:24 +0200)
committerJule Anger <janger@samba.org>
Mon, 8 Nov 2021 09:52:13 +0000 (8 10:52 +0100)
tree2c9b8f4a2c87a8d05c434c0125942113e9becc2btree | snapshot (tar.gz zip)
parentcaf3d32f68f91ea83c7f601577dd1f7c98f030e5commit | diff
CVE-2021-3738 s4:rpc_server/lsa: make use of dcesrv_samdb_connect_as_user() helper

This avoids a crash that's triggered by windows clients using
handles from OpenPolicy[2]() on across multiple connections within
an association group.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14468

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
source4/rpc_server/lsa/lsa_init.c diff | blob | blame | history
Samba GIT mirror