cifs: For SMB2 security informaion query, check for minimum sized security descriptor instead of sizeof FileAllInformation class - linux-dev - Linux kernel development work

diff options

author	Shirish Pargaonkar <shirishpargaonkar@gmail.com>	2018-06-04 06:46:22 -0500
committer	Steve French <stfrench@microsoft.com>	2018-06-04 19:19:24 -0500
commit	ee25c6dd7b05113783ce1f4fab6b30fc00d29b8d (patch)
tree	0d9f36330c53ae05ffdd630819e298719dcfbbcb /lib/test_overflow.c
parent	CIFS: Fix signing for SMB2/3 (diff)
download	linux-dev-ee25c6dd7b05113783ce1f4fab6b30fc00d29b8d.tar.xz linux-dev-ee25c6dd7b05113783ce1f4fab6b30fc00d29b8d.zip

cifs: For SMB2 security informaion query, check for minimum sized security descriptor instead of sizeof FileAllInformation class

Validate_buf () function checks for an expected minimum sized response passed to query_info() function. For security information, the size of a security descriptor can be smaller (one subauthority, no ACEs) than the size of the structure that defines FileInfoClass of FileAllInformation. Bugzilla: https://bugzilla.kernel.org/show_bug.cgi?id=199725 Cc: <stable@vger.kernel.org> Signed-off-by: Shirish Pargaonkar <shirishpargaonkar@gmail.com> Reviewed-by: Noah Morrison <noah.morrison@rubrik.com> Signed-off-by: Steve French <stfrench@microsoft.com>

Diffstat (limited to 'lib/test_overflow.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: