wok-current view samba/stuff/CVE-2017-7494.u @ rev 22209

updated xorg-libXcomposite and xorg-libXcomposite-dev (0.4.4 -> 0.4.5)
author Hans-G?nter Theisgen
date Mon Nov 11 14:40:43 2019 +0100 (2019-11-11)
parents
children
line source
1 CVE-2017-7494: rpc_server3: Refuse to open pipe names with / inside
2 --- source3/rpc_server/srv_pipe.c
3 +++ source3/rpc_server/srv_pipe.c
4 @@ -384,6 +384,11 @@ bool is_known_pipename(const char *pipename, struct ndr_syntax_id *syntax)
5 {
6 NTSTATUS status;
8 + if (strchr(pipename, '/')) {
9 + DEBUG(1, ("Refusing open on pipe %s\n", pipename));
10 + return false;
11 + }
12 +
13 if (lp_disable_spoolss() && strequal(pipename, "spoolss")) {
14 DEBUG(10, ("refusing spoolss access\n"));
15 return false;