sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-02-23 09:57:40 +03:00
Code

CVE-2015-5370: s3:rpc_client: verify auth_context_id in rpc_pipe_bind_step_one_done()

Browse Source 
BUG: https://bugzilla.samba.org/show_bug.cgi?id=11344

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Günther Deschner <gd@samba.org>
This commit is contained in:
Stefan Metzmacher 2015-07-07 22:51:18 +02:00
parent 97ee4d82b1
commit f37f965e23
1 changed files with 8 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
source3/rpc_client/cli_pipe.c
View File

@ -1921,6 +1921,14 @@ static void rpc_pipe_bind_step_one_done(struct tevent_req *subreq)
return;
}
if (auth.auth_context_id != pauth->auth_context_id) {
DEBUG(0, (__location__ " Auth context id %u mismatch expected %u.\n",
(unsigned)auth.auth_context_id,
(unsigned)pauth->auth_context_id));
tevent_req_nterror(req, NT_STATUS_RPC_PROTOCOL_ERROR);
return;
}
break;
}