| commit | c0236de09e542dbb168969d8ae9f0c150a75198e | |
| author | Stefan Metzmacher <metze@samba.org> | |
| Fri, 26 Jun 2015 06:10:46 +0000 (26 08:10 +0200) | ||
| committer | Stefan Metzmacher <metze@samba.org> | |
| Wed, 30 Mar 2016 02:10:07 +0000 (30 04:10 +0200) | ||
| tree | e523348dd67e255fcd8470f6b8146a8fff4c1f89 | treesnapshot (tar.gz zip) |
| parent | b91112d779a44f78cac3a944b28a6e6f19598d74 | commitdiff |
CVE-2015-5370: s4:rpc_server: no authentication is indicated by pkt->auth_length == 0
pkt->u.*.auth_info.length is not the correct thing to check.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=11344
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Günther Deschner <gd@samba.org>
pkt->u.*.auth_info.length is not the correct thing to check.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=11344
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Günther Deschner <gd@samba.org>
| selftest/knownfail | diffblobblamehistory | |
| source4/rpc_server/dcesrv_auth.c | diffblobblamehistory |