CVE-2015-5370: s4:rpc_server: disconnect after a failing dcesrv_auth_request()

author Stefan Metzmacher <metze@samba.org>

Fri, 26 Jun 2015 06:10:46 +0000 (08:10 +0200)

committer Stefan Metzmacher <metze@samba.org>

Wed, 30 Mar 2016 02:10:11 +0000 (04:10 +0200)
author Stefan Metzmacher <metze@samba.org>
Fri, 26 Jun 2015 06:10:46 +0000 (08:10 +0200)
committer Stefan Metzmacher <metze@samba.org>
Wed, 30 Mar 2016 02:10:11 +0000 (04:10 +0200)
diff --git a/source4/rpc_server/dcerpc_server.c b/source4/rpc_server/dcerpc_server.c

index 9cf72498b35ffd75ff0988b3ded2c8de40f3809c..b7da76ff2f6f1ae9537804c27146e829f7b7fc83 100644 (file)
--- a/source4/rpc_server/dcerpc_server.c
+++ b/source4/rpc_server/dcerpc_server.c
@@ -1473,6 +1473,13 @@ static NTSTATUS dcesrv_process_ncacn_packet(struct dcesrv_connection *dce_conn,
                 }
  
                 if (!dcesrv_auth_request(call, &blob)) {
+                       /*
+                        * We don't use dcesrv_fault_disconnect()
+                        * here, because we don't want to set
+                        * DCERPC_PFC_FLAG_DID_NOT_EXECUTE
+                        */
+                       dcesrv_call_disconnect_after(call,
+                                               "dcesrv_auth_request - failed");
                         return dcesrv_fault(call, DCERPC_FAULT_ACCESS_DENIED);
                 }
         }
author	Stefan Metzmacher <metze@samba.org>
	Fri, 26 Jun 2015 06:10:46 +0000 (08:10 +0200)
committer	Stefan Metzmacher <metze@samba.org>
	Wed, 30 Mar 2016 02:10:11 +0000 (04:10 +0200)