git.samba.org - samba.git/commit

author	Stefan Metzmacher <metze@samba.org>
	Tue, 24 Sep 2013 03:03:40 +0000 (05:03 +0200)
committer	Karolin Seeger <kseeger@samba.org>
	Thu, 5 Dec 2013 10:11:51 +0000 (11:11 +0100)
commit	b13b1426f6c309b6ff3b2b5f9e335a62fd256969
tree	52c2c39746cdcfdc16c81437dd26909275a6accb	tree
parent	d485eff4c13ce3c0ab689cde56fe74ad3a0343f5	commit \| diff

CVE-2013-4408:librpc: check for invalid frag_len within dcerpc_read_ncacn_packet_next_vector()

We should do this explicit instead of relying on
tstream_readv_pdu_ask_for_next_vector() to catch the overflow.

Bug: https://bugzilla.samba.org/show_bug.cgi?id=10185

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Jeremy Allison <jra@samba.org>

librpc/rpc/dcerpc_util.c

diff | blob | history

Samba Shared Repository

RSS Atom