Harden NDR against large arrays of unions and other NDR token abuses (!964) · Merge requests · The Samba Team / Samba

Andrew Bartlett requested to merge samba-team/devel/samba:abartlet-pidl-array-of-unions into master Dec 04, 2019

This came from our fuzzing code where we found that our client (and not our server, thankfully) could spend a lot of time and even crash if the NDR token list got too long, particularly in the case of an array of unions, where one arm of the union was empty.

This also includes other fixes from issues identified by the new ndr_fuzz_X fuzzer.

Edited Dec 04, 2019 by Andrew Bartlett

Harden NDR against large arrays of unions and other NDR token abuses

Merge request reports