1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-23 17:34:34 +03:00
samba-mirror/source4/rpc_server
Andrew Bartlett 7e091e5051 s4-lsa: Fix use-after-free in LSA server
This is a regression introduced in ab7988aa2f.

The state variable contains the data to be returned to the client
and packed into NDR after the function returned.

This memory needs to be kept (on mem_ctx as parent) until that is
pushed and freed by the caller.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=13420

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
2018-05-03 08:17:44 +02:00
..
backupkey s4:rpc_server:backupkey: Move variable into scope 2017-08-11 18:21:22 +02:00
browser werror: replace WERR_UNKNOWN_LEVEL with WERR_INVALID_LEVEL in source4/rpc_server/ 2016-09-28 00:04:35 +02:00
common rpc_server: Move SID helpers into common 2017-05-30 08:06:07 +02:00
dnsserver dnsrpc: Use TALLOC_FREE instead of an explicit if-statement 2018-04-11 19:07:24 +02:00
drsuapi getncchanges.c: max_links calculation didn't work well in some cases 2017-09-18 05:51:25 +02:00
echo CVE-2016-2118: s4:rpc_server/rpcecho: allow DCERPC_AUTH_LEVEL_CONNECT by default 2016-04-12 19:25:27 +02:00
epmapper CVE-2016-2118: s4:rpc_server/epmapper: allow DCERPC_AUTH_LEVEL_CONNECT by default 2016-04-12 19:25:27 +02:00
eventlog
lsa s4-lsa: Fix use-after-free in LSA server 2018-05-03 08:17:44 +02:00
netlogon s4:rpc_server/netlogon: make use of auth_check_password_send/recv() 2017-08-07 15:20:03 +02:00
remote s4: modules. Fix missing TALLOC_CTX in module init function. 2017-07-26 21:35:21 +02:00
samr samr: Disable NTLM-based password changes on the server if NTLM is disabled 2017-07-04 06:57:21 +02:00
srvsvc s4:rpc_server: Add FALL_THROUGH statements in dcesrv_srvsvc.c 2018-03-01 04:37:43 +01:00
unixinfo wbclient: "ev" is no longer used in wbc_xids_to_sids 2016-09-28 00:04:36 +02:00
winreg werror: replace WERR_INVALID_PARAM with WERR_INVALID_PARAMETER in source4/rpc_server/ 2016-09-28 00:04:23 +02:00
wkssvc werror: replace WERR_UNKNOWN_LEVEL with WERR_INVALID_LEVEL in source4/rpc_server/ 2016-09-28 00:04:35 +02:00
dcerpc_server.c s4:rpc_server: Fix size types 2018-03-20 23:16:15 +01:00
dcerpc_server.h docs: Remove prog_guide4.txt 2018-01-21 11:48:01 +01:00
dcerpc_server.pc.in
dcesrv_auth.c s4:rpc_server: remove unused dcesrv_auth_{bind_ack,auth3,alter_ack}() 2017-05-21 21:05:13 +02:00
dcesrv_mgmt.c s4-rpc_server: Allow each interface to declare if it uses handles 2016-12-20 01:11:23 +01:00
handles.c s4-rpc_server: Allow each interface to declare if it uses handles 2016-12-20 01:11:23 +01:00
service_rpc.c source4/smbd: refactor the process model for prefork 2017-10-19 05:33:09 +02:00
wscript_build s4-netlogon: Provide logs for machine account success and failures 2017-06-27 16:57:42 +02:00