git.samba.org - metze/samba/wip.git/commit

author	Jeremy Allison <jra@samba.org>
	Tue, 7 Jul 2015 07:15:39 +0000 (09:15 +0200)
committer	Stefan Metzmacher <metze@samba.org>
	Tue, 12 Apr 2016 17:25:31 +0000 (19:25 +0200)
commit	f74c4c833540ca88bf32b7853169139b31f3c23d
tree	fb3b84aa54e6db3466b28bb97d532d49ac87e8a4	tree
parent	302d927ac2f7d132d3db068de9b12bb666c4cfaf	commit \| diff

CVE-2015-5370: s3:rpc_server: ensure that the message ordering doesn't violate the spec

The first pdu is always a BIND.

REQUEST pdus are only allowed once the authentication
is finished.

A simple anonymous authentication is finished after the BIND.
Real authentication may need additional ALTER or AUTH3 exchanges.

Pair-Programmed-With: Stefan Metzmacher <metze@samba.org>

BUG: https://bugzilla.samba.org/show_bug.cgi?id=11344

Signed-off-by: Jeremy Allison <jra@samba.org>
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Günther Deschner <gd@samba.org>

source3/rpc_server/rpc_handles.c		diff \| blob \| history
source3/rpc_server/rpc_pipes.h		diff \| blob \| history
source3/rpc_server/srv_pipe.c		diff \| blob \| history