[SCM] Samba Shared Repository - branch v3-4-test updated

Karolin Seeger Tue, 16 Mar 2010 01:01:16 -0700

The branch, v3-4-test has been updated
       via  3373b97... s3: Fix an uninitialized variable read
      from  64fbfee... s3:release-scripts: fix create-tarball to treat vendor 
patch level correctly (cherry picked from commit 
b845025daf2da85eb1af6cbfa7878cf59a32f2a6) (cherry picked from commit 
95c6a5a782caa77bc8bbe75de6ca249bc255507e)


http://gitweb.samba.org/?p=samba.git;a=shortlog;h=v3-4-test


- Log -----------------------------------------------------------------
commit 3373b973ef892f013dbf6a1df805de158c0ff4e2
Author: Volker Lendecke <v...@samba.org>
Date:   Sun Mar 14 21:18:34 2010 +0100

    s3: Fix an uninitialized variable read
    
    Found by Laurent Gaffie <laurent.gaf...@gmail.com>
    
    Thanks for that,
    
    Volker
    
    Fix bug #7254 (An uninitialized variable read could cause an smbd crash).
    (cherry picked from commit 9280051bfba337458722fb157f3082f93cbd9f2b)

-----------------------------------------------------------------------

Summary of changes:
 source3/smbd/sesssetup.c |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)


Changeset truncated at 500 lines:

diff --git a/source3/smbd/sesssetup.c b/source3/smbd/sesssetup.c
index 044e398..2a30a78 100644
--- a/source3/smbd/sesssetup.c
+++ b/source3/smbd/sesssetup.c
@@ -1184,7 +1184,7 @@ static void reply_sesssetup_and_X_spnego(struct 
smb_request *req)
        file_save("negotiate.dat", blob1.data, blob1.length);
 #endif
 
-       p2 = (char *)req->buf + data_blob_len;
+       p2 = (char *)req->buf + blob1.length;
 
        p2 += srvstr_pull_req_talloc(talloc_tos(), req, &tmp, p2,
                                     STR_TERMINATE);


-- 
Samba Shared Repository

[SCM] Samba Shared Repository - branch v3-4-test updated

Reply via email to