git.samba.org - samba.git/commit

author	Stefan Metzmacher <metze@samba.org>
	Fri, 26 Jun 2015 06:10:46 +0000 (08:10 +0200)
committer	Stefan Metzmacher <metze@samba.org>
	Wed, 30 Mar 2016 02:39:43 +0000 (04:39 +0200)
commit	503d08d971343659762566daebccfe23ea83e183
tree	2e48fda8a5c782dea7f7886ecf1dedcdec4e6494	tree
parent	75d9b583f029f8bdf1fba70c03330da82fae645f	commit \| diff

CVE-2015-5370: s4:rpc_server: ensure that the message ordering doesn't violate the spec

The first pdu is always a BIND.

REQUEST pdus are only allowed once the authentication
is finished.

A simple anonymous authentication is finished after the BIND.
Real authentication may need additional ALTER or AUTH3 exchanges.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=11344

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Günther Deschner <gd@samba.org>

source4/rpc_server/dcerpc_server.c		diff \| blob \| history
source4/rpc_server/dcerpc_server.h		diff \| blob \| history
source4/rpc_server/dcesrv_auth.c		diff \| blob \| history

Samba Shared Repository

RSS Atom