git.samba.org / metze / samba-autobuild-v4-19-test / .git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 27d20fc)
CVE-2020-25717: auth/ntlmssp: start with authoritative = 1
authorStefan Metzmacher <metze@samba.org>
Tue, 26 Oct 2021 15:42:41 +0000 (17:42 +0200)
committerJule Anger <janger@samba.org>
Tue, 9 Nov 2021 19:45:32 +0000 (19:45 +0000)
This is not strictly needed, but makes it easier to audit
that we don't miss important places.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14556

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
auth/ntlmssp/ntlmssp_server.c patch | blob | history

diff --git a/auth/ntlmssp/ntlmssp_server.c b/auth/ntlmssp/ntlmssp_server.c
index 001238278d7ff66b58b9a373c7750f35dd2b9dae..939aa0ef4aa5d6ad1623ff9f1a5e0aae62ea82cd 100644 (file)
--- a/auth/ntlmssp/ntlmssp_server.c
+++ b/auth/ntlmssp/ntlmssp_server.c
@@ -799,7 +799,7 @@ static void ntlmssp_server_auth_done(struct tevent_req *subreq)
        struct gensec_security *gensec_security = state->gensec_security;
        struct gensec_ntlmssp_context *gensec_ntlmssp = state->gensec_ntlmssp;
        struct auth4_context *auth_context = gensec_security->auth_context;
-       uint8_t authoritative = 0;
+       uint8_t authoritative = 1;
        NTSTATUS status;
 
        status = auth_context->check_ntlm_password_recv(subreq,
Unnamed repository; edit this file 'description' to name the repository.