samba.git - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Andrew Bartlett <abartlet@samba.org>	2013-11-28 06:50:01 +1300
committer	Stefan Metzmacher <metze@samba.org>	2014-03-13 15:06:35 +0100
commit	48ffca0acac83bb31266390361ee77e1eaa2f2be (patch)
tree	d90a9042f9c1764db8e2372f14bb97b9b66d3b2f /source3/auth/server_info_sam.c
parent	9f53b61f0674f7855a42b8e0de66f343f4592589 (diff)
download	samba-48ffca0acac83bb31266390361ee77e1eaa2f2be.tar.gz samba-48ffca0acac83bb31266390361ee77e1eaa2f2be.tar.xz samba-48ffca0acac83bb31266390361ee77e1eaa2f2be.zip

CVE-2013-4496:Revert remainder of ce895609b04380bfc41e4f8fddc84bd2f9324340

Part of this was removed when ChangePasswordUser was unimplemented, but remove the remainder of this flawed commit. Fully check the password first, as extract_pw_from_buffer() already does a partial check of the password because it needs a correct old password to correctly decrypt the length. Andrew Bartlett Bug: https://bugzilla.samba.org/show_bug.cgi?id=10245 Change-Id: Ibccc4ada400b5f89a942d79c1a269b493e0adda6 Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org> Reviewed-on: https://gerrit.samba.org/38 Autobuild-User(master): Stefan Metzmacher <metze@samba.org> Autobuild-Date(master): Thu Mar 13 15:06:35 CET 2014 on sn-devel-104

Diffstat (limited to 'source3/auth/server_info_sam.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: