sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-03-01 04:58:35 +03:00
Code
samba-mirror/source4
History
Stefan Metzmacher 0235d72491 CVE-2015-5370: s4:librpc/rpc: protect dcerpc_request_recv_data() against too large payloads 
We should only allow a combined payload of a response of at max 4 MBytes.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=11344

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Günther Deschner <gd@samba.org>
2016-03-30 04:21:32 +02:00
..
auth
CVE-2016-2110: libcli/auth: pass server_timestamp to SMBNTLMv2encrypt_hash()
2016-03-29 16:25:40 +02:00
build/pasn1
cldap_server
s3/s4: smbd, rpc, ldap, cldap, kdc services.
2014-06-07 01:01:43 +02:00
client
s4/client: add FS_SECTOR_SIZE_INFORMATION query support
2015-03-18 18:57:20 +01:00
cluster
Remove callers of lp_use_ntdb
2015-03-17 11:30:51 +01:00
dns_server
CVE-2016-0771: s4:dns_server: fix idl for dns_txt_record
2016-02-24 11:43:41 +01:00
dsdb
password_lockout: test creds.get_kerberos_state()
2016-01-06 13:14:21 +01:00
echo_server
s4:echo_server fix compiler warnings
2013-12-12 14:21:28 -08:00
heimdal
heimdal:kdc: add support for HDB_ERR_WRONG_REALM
2015-07-08 18:38:20 +02:00
heimdal_build
kerberos: make sure we only use prompter type when available.
2015-10-05 12:44:42 +02:00
include
lib/util: Include DEBUG macro in internal header files before samba_util.h
2015-03-11 18:47:22 +01:00
kdc
auth: keep track of lastLogon and lastLogonTimestamp
2016-01-06 10:06:29 +01:00
ldap_server
CVE-2016-2112: s4:ldap_server: implement "ldap server require strong auth" option
2016-03-29 16:27:04 +02:00
lib
CVE-2016-2113: s4:lib/tls: implement infrastructure to do peer verification
2016-03-29 16:28:05 +02:00
libcli
CVE-2016-2115: s4:libcli/raw: pass the minprotocol to smb_raw_negotiate*()
2016-03-30 04:18:11 +02:00
libnet
s4:libnet: make use of dcerpc_secondary_auth_connection_send/recv()
2015-07-07 14:05:28 +02:00
librpc
CVE-2015-5370: s4:librpc/rpc: protect dcerpc_request_recv_data() against too large payloads
2016-03-30 04:21:32 +02:00
nbt_server
Fix a typo
2015-06-19 01:05:17 +02:00
ntp_signd
build: Build with system md5.h on OpenIndiana
2013-06-19 21:32:36 +02:00
ntptr
spoolss: make spoolss deal with ndr64 SetForm by using proper container object.
2013-01-17 17:11:37 +01:00
ntvfs
s4:ntvfs/ipc: fix ipc_close()
2015-07-03 02:00:28 +02:00
param
CVE-2016-2115: s4:libcli/raw: add smbcli_options.min_protocol
2016-03-30 04:18:10 +02:00
rpc_server
CVE-2016-2118: s4:rpc_server/samr: allow _samr_ValidatePassword only with PRIVACY...
2016-03-30 04:18:53 +02:00
script
find_unused_macros: Remove obsolete script that finds unused macros.
2014-08-31 21:21:13 +02:00
scripting
s4:scripting/devel: make use of the generic arcfour_encrypt() and string_to_byte_array() functions
2016-02-05 10:03:34 +01:00
selftest
CVE-2016-2118: s4:rpc_server/drsuapi: require DCERPC_AUTH_LEVEL_PRIVACY
2016-03-30 04:18:31 +02:00
setup
dbcheck: Add explict tests for unknown and unsorted attributeID values
2015-09-03 09:11:35 +02:00
smb_server
CVE-2016-2115: s3:libsmb: add signing constant SMB_SIGNING_IPC_DEFAULT
2016-03-30 04:18:11 +02:00
smbd
Fix a few printf format errors
2015-05-07 20:20:19 +02:00
torture
CVE-2016-2115: s4:libcli/raw: pass the minprotocol to smb_raw_negotiate*()
2016-03-30 04:18:11 +02:00
utils
ntlm_auth: Remove two uses of hex_encode()
2015-05-13 01:44:20 +02:00
web_server
s4:lib/socket: simplify iface_list_wildcard() and its callers
2014-03-07 02:18:17 +01:00
winbind
s4-winbindd: Remove the winbind rewrite from the samba4 effort
2015-06-24 22:34:57 +02:00
wrepl_server
Remove all uses of the NT_STATUS_NOT_OK_RETURN_AND_FREE macro from the codebase.
2014-03-05 16:33:22 +01:00
.clang_complete
s3-build: Add .clang_complete.
2011-10-27 17:09:50 +02:00
.valgrind_suppressions
wscript_build
Do not install smbclient4 and nmblookup4
2014-04-15 03:25:13 +02:00