summaryrefslogtreecommitdiff
path: root/lib/mpi/mpi-cmp.c
diff options
context:
space:
mode:
authorDavid Disseldorp <ddiss@suse.de>2023-04-07 00:34:11 +0200
committerSteve French <stfrench@microsoft.com>2023-04-15 18:26:56 -0500
commit5105a7ffce19160e7062aee67fb6b3b8a1b56d78 (patch)
treeee227deca4072e030d02e42c3722530098e0d18e /lib/mpi/mpi-cmp.c
parent09a9639e56c01c7a00d6c0ca63f4c7c41abe075d (diff)
cifs: fix negotiate context parsing
smb311_decode_neg_context() doesn't properly check against SMB packet boundaries prior to accessing individual negotiate context entries. This is due to the length check omitting the eight byte smb2_neg_context header, as well as incorrect decrementing of len_of_ctxts. Fixes: 5100d8a3fe03 ("SMB311: Improve checking of negotiate security contexts") Reported-by: Volker Lendecke <vl@samba.org> Reviewed-by: Paulo Alcantara (SUSE) <pc@manguebit.com> Signed-off-by: David Disseldorp <ddiss@suse.de> Signed-off-by: Steve French <stfrench@microsoft.com>
Diffstat (limited to 'lib/mpi/mpi-cmp.c')
0 files changed, 0 insertions, 0 deletions