| commit | c4a1b2ede499b38bda7bcf08f3d985b5396342f8 | |
| author | Stefan Metzmacher <metze@samba.org> | |
| Tue, 24 Sep 2013 03:03:40 +0000 (24 05:03 +0200) | ||
| committer | Karolin Seeger <kseeger@samba.org> | |
| Thu, 5 Dec 2013 09:18:09 +0000 (5 10:18 +0100) | ||
| tree | fabf8a82976cd85e7a049aa4726330d164adb66a | treesnapshot (tar.gz zip) |
| parent | 78b49899e75cd692c595bf1ce5ed4158a97673e6 | commitdiff |
CVE-2013-4408:librpc: check for invalid frag_len within dcerpc_read_ncacn_packet_next_vector()
We should do this explicit instead of relying on
tstream_readv_pdu_ask_for_next_vector() to catch the overflow.
Bug: https://bugzilla.samba.org/show_bug.cgi?id=10185
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Jeremy Allison <jra@samba.org>
We should do this explicit instead of relying on
tstream_readv_pdu_ask_for_next_vector() to catch the overflow.
Bug: https://bugzilla.samba.org/show_bug.cgi?id=10185
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Jeremy Allison <jra@samba.org>
| librpc/rpc/dcerpc_util.c | diffblobblamehistory |