git.samba.org / metze / samba / wip.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7fab11e) | patch
CVE-2016-2118: s3:rpc_server/{samr,lsa,netlogon}: reject DCERPC_AUTH_LEVEL_CONNECT...
authorStefan Metzmacher <metze@samba.org>
Fri, 7 Aug 2015 07:50:30 +0000 (09:50 +0200)
committerStefan Metzmacher <metze@samba.org>
Tue, 12 Apr 2016 17:25:28 +0000 (19:25 +0200)
commit41bccb5ae5d8523fab74e461f0e2b89f4ef312a8
treee31ba9d7afc5f16924bed17f5f1b794b2a9d4821tree
parent7fab11e2eb6fb3af7a138e74ed423145d11343afcommit | diff
CVE-2016-2118: s3:rpc_server/{samr,lsa,netlogon}: reject DCERPC_AUTH_LEVEL_CONNECT by default

This prevents man in the middle downgrade attacks.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=11616

Pair-Programmed-With: Günther Deschner <gd@samba.org>

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Signed-off-by: Günther Deschner <gd@samba.org>
selftest/knownfail diff | blob | history
source3/rpc_server/srv_pipe.c diff | blob | history
Work in progress branches