summaryrefslogtreecommitdiff
path: root/net/samba/patches
diff options
context:
space:
mode:
Diffstat (limited to 'net/samba/patches')
-rw-r--r--net/samba/patches/patch-source3_rpc__server_srv__pipe.c22
1 files changed, 22 insertions, 0 deletions
diff --git a/net/samba/patches/patch-source3_rpc__server_srv__pipe.c b/net/samba/patches/patch-source3_rpc__server_srv__pipe.c
new file mode 100644
index 00000000000..34a1c67a54f
--- /dev/null
+++ b/net/samba/patches/patch-source3_rpc__server_srv__pipe.c
@@ -0,0 +1,22 @@
+$NetBSD: patch-source3_rpc__server_srv__pipe.c,v 1.1 2017/05/24 15:36:42 he Exp $
+
+Adapt & apply fix for
+https://bugzilla.samba.org/show_bug.cgi?id=12780 (non-public)
+from
+https://www.samba.org/samba/ftp/patches/security/samba-4.6.3-4.5.9-4.4.13-CVE-2017-7494.patch
+Should fix CVE-2017-7494.
+
+--- ../source3/rpc_server/srv_pipe.c.orig 2015-02-22 14:11:32.000000000 +0000
++++ ../source3/rpc_server/srv_pipe.c
+@@ -376,6 +376,11 @@ bool is_known_pipename(const char *cli_f
+ const char *pipename = cli_filename;
+ NTSTATUS status;
+
++ if (strchr(pipename, '/')) {
++ DEBUG(1, ("Refusing open on pipe %s\n", pipename));
++ return false;
++ }
++
+ if (strnequal(pipename, "\\PIPE\\", 6)) {
+ pipename += 5;
+ }
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-09 16:22:29 +0000