repo.or.cz
/
Samba.git
/
search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
log
|
graphiclog1
|
graphiclog2
|
commit
|
commitdiff
|
tree
|
refs
|
edit
|
fork
first
·
prev
·
next
VERSION: Disable git snapshots for the 4.3.7 release.
2016-03-30
St
e
f
a
n Metzmacher
VERSION: Disable gi
t
sn
a
pshots
for the 4
.
3
.
7 release
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan
M
etz
m
acher
WHATS
N
EW: Add rele
a
se notes f
o
r
S
am
b
a 4
.
3
.
7
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmacher
CVE-20
1
5-53
7
0: s4:selftes
t
:
r
u
n samba
.
te
s
ts
.
dcerpc
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metz
m
a
cher
CVE-2015-5370: python/samba/te
s
ts: add
so
m
e dcerpc
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
S
tefan Metzmacher
CVE-20
1
5
-
5370: python/samba/tests:
a
dd infras
t
ru
c
ture
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
S
tefan
Metzmac
h
er
CVE-2015-5370:
s
4:lib
r
pc/rpc
:
call dc
e
rpc_co
n
nection_dea
d
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefa
n
Metzmac
h
er
CVE-2015-5370: s3
:
r
pc_client: disconn
e
ct c
o
nn
e
c
t
ion
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzma
c
her
CVE
-
2015-53
7
0: libcli/smb:
u
se a max timeout of 1
second
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmacher
CVE-2015-53
7
0: s3:rp
c
_server: veri
f
y aut
h
_context_i
d
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
S
t
e
f
an Metzm
a
cher
C
V
E-201
5
-5370: s3:rpc
_
clie
n
t: verify auth_con
t
ext_id
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmacher
CV
E
-
20
1
5
-
537
0
: s3:librpc/rp
c
:
v
e
r
i
f
y auth_cont
e
xt_id
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
S
t
efan
Metzmac
h
er
C
V
E-2015-5370: s3:
l
ibrpc/rpc: make use of auth->auth_co
n
text
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metz
m
a
c
he
r
CVE-2015-537
0
: s3:rp
c
_server
:
make use of pi
p
e_
a
uth_data
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmacher
CVE-2015-5370: s3:rpc_clie
n
t: mak
e
use of
p
ipe_auth_da
t
a
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan
Metzmacher
C
V
E-2
0
1
5-
5
370: s3:
l
ibrpc/rpc:
add aut
h
_co
n
text_id to
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmac
h
er
C
V
E-2
0
15-
5
370
:
s
3:rpc
_
c
lien
t
: pass s
t
r
u
ct
p
ipe_
a
uth_data
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
S
tefan
M
etz
m
acher
CVE-2015
-
5370: s3:rpc_server:
don'
t
allow an exist
i
ng
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
S
tefan Metzma
c
h
er
CVE-2015-
5
370: s
3
:rpc_s
e
rver: check the transfer syntax
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metz
m
a
c
her
CVE
-
2015-53
7
0: s3:librpc/rpc:
r
emove unused dcerp
c
_pull_dcer
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmacher
CVE
-
2015-5370:
s3
:
rpc_server: use DCERPC_NCA
_
S_
P
R
O
T
O_ERROR
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmach
e
r
CVE-2015-5370: s3:rpc_
s
erver: let a fa
i
l
i
ng BIND mark
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmache
r
CVE-2015-5370: s
3
:rpc_server: d
i
sconn
e
ct the conne
c
tion
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
S
t
efan Metzm
a
cher
C
V
E-2015-5370: s3:r
p
c
_
ser
v
er: make
u
se of
d
c
e
rp
c
_verify_ncac
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmacher
CV
E
-
2
015-5370: s3:r
p
c_se
r
ver:
v
erify p
r
esentation context
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
S
t
efan Me
t
zmacher
C
V
E
-
2015-
5
37
0
:
s3:
r
pc_
s
erver:
u
se
'
a
lter' instead of
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Ste
f
an Metzmache
r
CVE
-
2015-5370
:
s3:rpc_ser
v
er: make sure au
t
h_level
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stef
a
n Metzmach
e
r
CVE-2015-5370: s3:rpc_
s
e
rve
r
:
let a failing auth3 ma
r
k
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Me
t
zmacher
CVE-2015-5370: s3:rp
c
_
server: don't allow auth3 if
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
St
e
fan Metzmacher
CV
E
-
2015-5370: s3:rpc_server: don't
i
g
nore fai
l
ures
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Me
t
zmacher
CVE-2015-5370:
s3
:
r
pc_ser
v
er:
j
us
t
call
p
i
p
e_auth_generic_bi
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefa
n
Metzm
a
cher
CVE-2015-5370: s3:rp
c
_server: let
a fa
i
ling sec_verification
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmacher
CVE
-
20
1
5
-
5370: s3:rpc_server: make use of dcerpc_pull_auth_t
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stef
a
n M
e
tzmac
h
er
CVE-2015-5370:
s3:rpc_client: veri
f
y
auth_{t
y
pe,level
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefa
n
Met
z
macher
CVE-2015-5370: s3:rpc_c
l
ien
t
:
p
r
o
tec
t
rp
c
_api_pipe
_
got_pdu
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
S
tefan Metzmacher
CVE-2
0
15-5370: s3
:
rpc_clien
t
: make use of
dcerpc_ve
r
ify
_
n
cac
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefa
n
Metzmacher
C
VE-2015-5370: s
3
:rpc_client: make
us
e
of dcerpc_
p
ull_auth_t
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmacher
CV
E
-2015-
5
370: s3:l
i
brpc/rpc: let
d
cerpc_c
h
eck_au
t
h
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmach
e
r
CVE-2015-
5
370:
s
3
:librp
c
/rp
c
: remo
v
e
a
uth trailer
a
nd
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
St
e
fan Metzmacher
CVE-2015-5370: librp
c
/rpc: don't
a
l
l
ow
p
kt->aut
h
_length
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
S
tefan Metzma
c
her
CVE-2015
-
5
370:
s
4:r
p
c_server
:
rejec
t
DCERPC_PFC_F
L
AG_PENDING
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmacher
CV
E
-
2015-5370: s4:rpc_server: the assoc_gr
o
up is
re
l
a
tive
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan
Metzmach
e
r
CVE-2015-5370: s4:rp
c
_server:
on
l
y allo
w
one
fragmente
d
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metz
m
a
c
h
e
r
C
VE-2015-5370: s4:r
p
c
_
server:
l
i
m
it a
l
location and
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Me
t
zm
a
cher
CV
E
-201
5
-
5
3
70: s4:r
p
c_server:
c
h
eck f
r
ag
_
length for
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
S
t
efan Metzmacher
C
V
E
-2015-5370: s4:r
p
c_se
r
ver: give the corr
e
ct reject
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmache
r
CVE-20
1
5-5370
:
s
4
:rpc_server: disco
n
nect after a
fail
i
ng
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
S
tefa
n
Metzmacher
CVE-201
5
-5370: s4:rpc_server: let a faili
n
g auth3 mark
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metz
m
ache
r
CVE-
2
015-53
7
0: s4:rp
c
_server: faili
n
g authen
t
i
cat
i
on
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan
Metzm
a
cher
C
VE-20
1
5-5370: s4:rpc_server: fix the
order of error
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
S
t
e
f
an Me
t
zmacher
CVE-201
5
-5370: s4:rpc_server:
c
h
anging an existing
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
St
e
fa
n
Metzmacher
CVE-
2
0
15-
5
370: s4:rpc_server
:
do
n
'
t
d
e
refence an empty
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stef
a
n
Metzmacher
CVE-2015-
5
3
70: s4:rpc_server: remove
p
ointless dcesrv_find_c
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmacher
CV
E
-20
1
5-
5
37
0
: s4:rpc_server:
l
e
t invalid re
q
u
est fragments
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
S
t
efan Metzma
c
h
e
r
CVE-201
5
-5370: s4:rpc_
s
erver: make sure alter_con
t
ext
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzma
c
her
CVE-2015-5370: s4:rpc_server: maintai
n
i
n
and
out struct
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
St
e
f
an Metzmacher
C
V
E
-
2015-5370: s4:r
p
c
_server:
e
n
sure that t
h
e message
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
St
e
fa
n
Metzm
a
c
h
er
CVE-2015-5370: s4:rp
c
_server: veri
f
y the protocol headers
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metz
m
acher
CVE-2015-5
3
7
0
: s4:rpc_s
e
r
ver: add infrastructure to
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Ste
f
an
M
e
tzmacher
CVE-20
1
5-53
7
0: s4
:
rpc_serv
e
r
: make
d
cesrv_process_ncacn_pack
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metz
m
acher
C
V
E-2015-5370: s4:rpc_serve
r
: return the cor
r
ect secondary_a
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
St
e
fan Metzmacher
CVE-2015-5370
:
s
4
:rpc_server:
a
d
d
s
ome padding to dcesr
v
_
b
i
n
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
St
e
f
an M
e
tzmacher
CVE-2015-5
3
70: s4:rpc_server: split out a dcesrv_fault_
w
i
th_
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan
M
e
tzmach
e
r
CVE-20
1
5
-
5370:
s
4
:
r
pc_
s
erver: fill
c
on
t
ext_id
in dcesrv_
f
ault(
)
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefa
n
Me
t
zmacher
CVE-2015
-
5
3
70: s4:rpc_s
e
rv
e
r: set
alloc_hint = 24 in
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
St
e
fa
n
M
e
tzmacher
C
V
E
-2015-
5
370: s4:rpc_
s
e
rver: a
v
oid Z
E
R
O_STRUCT() in
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
S
t
efan Met
z
mac
h
er
CVE-2015-5370: s4:rp
c
_serve
r
:
corr
e
ctly main
t
ain
dcesrv_conn
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metz
m
a
c
her
CVE-2015-5370: s4:rpc_server/netlo
g
on: make
use o
f
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
S
tefan Metzm
a
cher
CVE-20
1
5
-
5
370: s4
:
rp
c
_
server/samr: ma
k
e
use of dce_call
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan M
e
tzmacher
CVE-
2
015-5370: s
4
:rpc_server/lsa: make
use of
d
ce_
c
al
l
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stef
a
n Metzmacher
CVE-2015-5370: s4:rp
c
_server
:
ma
k
e use
of dce_call
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metz
m
acher
CVE-2015-5370: s4:rp
c
_server: maintain dcesrv
_
a
u
t
h
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmacher
C
V
E-
2
0
1
5-
5
370:
s4:rpc_server: c
h
e
c
k
th
e
result of dcerpc_pul
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmacher
CV
E
-
2
015-
5
370: s4:rpc_s
e
rver: no
a
uthentication is
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
St
e
f
a
n Metzmac
h
er
CV
E
-2015-5370: s4:rpc_server: make use of talloc_zer
o
()
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefa
n
Metz
m
ac
h
er
CVE-2015-
5
3
7
0
:
s4
:
l
i
brpc/rpc: protect dcerpc_request_recv_d
a
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
S
t
e
fan Metzmacher
C
VE
-
2015
-
5
3
70: s4:librpc/rpc:
use dcerpc_v
e
r
ify_ncacn_packet
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmach
e
r
CVE-2015
-
5370: s4
:
l
ibrpc/rpc: hand
l
e
DCERP
C
_P
K
T_FAU
L
T
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
S
t
e
fan Metzmache
r
C
V
E-
2
015
-
5370: s4:librpc/r
p
c
:
make u
s
e
of dc
e
r
p
c_ma
p
_ack
_
rea
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
S
te
f
an Metzmacher
CVE-2015-537
0
: s3:rpc_
c
lient: remo
v
e
us
e
less frag_leng
t
h
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan
Me
t
zmach
e
r
CVE-201
5
-
5370: s3:r
p
c_clie
n
t:
m
ove AS/U hack to the
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
S
t
ef
a
n Metzm
a
cher
CVE-201
5
-5370: librp
c
/rp
c
: add a dcerpc
_
v
e
rify_ncacn_
p
a
c
ket_
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzm
a
cher
C
V
E-2015-
5
370: s4:librpc/rpc: finally verify the server
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Ste
f
an
Metzmacher
CVE-2015-5370:
s
4:librpc/r
p
c:
a
v
o
i
d
using dce
c
l
i_se
c
urity
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metz
m
ac
h
er
CVE-2015-
5
370: s4:librpc/rpc
:
simpl
i
f
y ch
e
cks if
ge
n
sec
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
S
t
efa
n
Metzmach
e
r
CVE-2
0
15-5
3
70: s4:l
i
br
p
c/rpc: avoid dereferencing sec
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmacher
CVE-2015-5370: s4:librpc/rpc: always use nca
c
n_pull_
r
equ
e
st_
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmacher
C
V
E-2015-5370: s4:librpc/rpc: avoid
u
sing c->security_state
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmacher
CVE-2
0
15-53
7
0: s4:librpc/rpc: avoid using hs-
>
p->co
n
n
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmac
h
e
r
CVE-2015-5370
:
s
4
:
l
ibrpc/rpc: use
a
l
oca
l
auth_info
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan
M
etzmacher
CVE-2015-5370:
s
4:
l
ibrpc/rpc: use auth_con
t
ext_id = 1
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan
M
etzmacher
CVE-2015-5370:
s
4:l
i
brp
c
/rpc: main
t
ain dc
e
cli_secu
r
ity
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
St
e
fan Metzmacher
CVE-
2
01
5
-5370
:
s
4:librpc
/
rpc: send a dce
r
pc
_
sec_
v
erification
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmacher
CVE
-
2015-537
0
:
s
3:librpc
/
rpc: d
o
n't
call dcerpc_pull_auth_tr
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Metzmach
e
r
CV
E
-2015-5370: li
b
rpc/rpc: simplif
y
an
d
harden dcerpc_pull_a
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stef
a
n Met
z
macher
CVE-2015-537
0
: dcerpc
.
idl:
a
d
d DC
E
RPC_{NCACN_PA
Y
LOAD
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan Met
z
macher
C
VE-20
1
6-
2
118
:
s3:rpc_server/s
a
mr: allow _samr_ValidatePassw
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan
Me
t
zmacher
CVE
-
2
016-2118:
s4:rpc_
s
erver
/
samr: al
l
ow _samr_ValidatePassw
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Ste
f
an Metzmacher
CVE-2
0
16-2118
:
d
o
cs-xml:
d
efa
u
l
t "a
l
low d
c
erpc aut
h
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan
M
etz
m
acher
CVE-2016
-
2118: s3:rpc_se
r
ver/{epmapper,echo}: allow
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
2016-03-30
Stefan
M
etzm
a
c
h
er
C
VE-2016-2118:
s
3:rpc_server/{samr,lsa,netlogon}: reject
.
.
.
Signed-off-by:
Stefan Metzmacher
<metze@samba.org>
commit
|
commitdiff
|
tree
next