Searched hist:"536 bb492d39bb6c080c92f31e8a55fe9934f452b" (Results 1 – 3 of 3) sorted by relevance
| /openbmc/linux/fs/smb/server/ |
| H A D | smb_common.h | diff 536bb492d39bb6c080c92f31e8a55fe9934f452b Sun Jul 23 01:27:37 CDT 2023 Namjae Jeon <linkinjeon@kernel.org> ksmbd: fix out of bounds in init_smb2_rsp_hdr()
If client send smb2 negotiate request and then send smb1 negotiate
request, init_smb2_rsp_hdr is called for smb1 negotiate request since
need_neg is set to false. This patch ignore smb1 packets after ->need_neg
is set to false.
Reported-by: zdi-disclosures@trendmicro.com # ZDI-CAN-21541
Signed-off-by: Namjae Jeon <linkinjeon@kernel.org>
Signed-off-by: Steve French <stfrench@microsoft.com>
|
| H A D | smb_common.c | diff 536bb492d39bb6c080c92f31e8a55fe9934f452b Sun Jul 23 01:27:37 CDT 2023 Namjae Jeon <linkinjeon@kernel.org> ksmbd: fix out of bounds in init_smb2_rsp_hdr()
If client send smb2 negotiate request and then send smb1 negotiate
request, init_smb2_rsp_hdr is called for smb1 negotiate request since
need_neg is set to false. This patch ignore smb1 packets after ->need_neg
is set to false.
Reported-by: zdi-disclosures@trendmicro.com # ZDI-CAN-21541
Signed-off-by: Namjae Jeon <linkinjeon@kernel.org>
Signed-off-by: Steve French <stfrench@microsoft.com>
|
| H A D | server.c | diff 536bb492d39bb6c080c92f31e8a55fe9934f452b Sun Jul 23 01:27:37 CDT 2023 Namjae Jeon <linkinjeon@kernel.org> ksmbd: fix out of bounds in init_smb2_rsp_hdr()
If client send smb2 negotiate request and then send smb1 negotiate
request, init_smb2_rsp_hdr is called for smb1 negotiate request since
need_neg is set to false. This patch ignore smb1 packets after ->need_neg
is set to false.
Reported-by: zdi-disclosures@trendmicro.com # ZDI-CAN-21541
Signed-off-by: Namjae Jeon <linkinjeon@kernel.org>
Signed-off-by: Steve French <stfrench@microsoft.com>
|