git.samba.org - amitay/samba.git/commit

git.samba.org / amitay / samba.git / commit

author	Stefan Metzmacher <metze@samba.org>
	Fri, 26 Jun 2015 06:10:46 +0000 (08:10 +0200)
committer	Stefan Metzmacher <metze@samba.org>
	Tue, 12 Apr 2016 17:25:30 +0000 (19:25 +0200)
commit	0ba1b1867c3ed388358adc6ae0b583fdc7775795
tree	ad6f2dba5116344ee3b38427a2c72ddf7b3ce78c	tree
parent	c0d74ca7af9a9aafe81787bcd540af56e048cca3	commit \| diff

CVE-2015-5370: s4:rpc_server: ensure that the message ordering doesn't violate the spec

The first pdu is always a BIND.

REQUEST pdus are only allowed once the authentication
is finished.

A simple anonymous authentication is finished after the BIND.
Real authentication may need additional ALTER or AUTH3 exchanges.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=11344

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Günther Deschner <gd@samba.org>

source4/rpc_server/dcerpc_server.c		diff \| blob \| history
source4/rpc_server/dcerpc_server.h		diff \| blob \| history
source4/rpc_server/dcesrv_auth.c		diff \| blob \| history

Amitay's Samba development tree

RSS Atom