Fix bug #15420 (!3220) · Merge requests · The Samba Team / Samba

Jeremy Allison requested to merge samba-team/devel/samba:jra-fix-bug-15420 into master Aug 11, 2023

smbd crashes through an uninitialized pointer over SMB1 with a truncated sessionsetup request.

https://bugzilla.samba.org/show_bug.cgi?id=15420

Patchset does:

1). Force the pointer to be bad to make the crash repeatable. 2). Add new regression test and knownfail. 3). Fix it and remove knownfail 4). Change forced bad pointer in (1) to NULL initialization. 5). Fix all other callers of the error-prone function for completeness.

Fix bug #15420

Merge request reports