Patch to fix a segfault while duping some security descriptors

Nadezhda Ivanova nivanova at samba.org
Tue May 25 16:19:52 MDT 2010


Hi,
That's a nice fix, but where is the caller that provided an uninitialized
DACL? Maybe that needs fixing too.


On Wed, May 26, 2010 at 12:49 AM, Anatoliy Atanasov <
anatoliy.atanasov at postpath.com> wrote:

> Hi there,
>
> I had the same problem :), just waiting for the patch to be approved before
> pushing it.
>
> Thanks,
> Anatoliy
> ----- Original Message -----
> > From: samba-technical-bounces at lists.samba.org <
> samba-technical-bounces at lists.samba.org>
> > To: samba-technical at lists.samba.org <samba-technical at lists.samba.org>
> > Sent: Wednesday, May 26, 2010 0:04:47 AM (GMT+02:00) Athens, Bucharest,
> Istanbul
> > Subject: Patch to fix a segfault while duping some security descriptors
>
> > > I found a segfault when duplicating a security descriptor that was
> > missing sacls or dacls. I ran into this when a piece of my code wrote
> > a security descriptor for an LDAP user that had no sacls. After doing
> > that, checking or unchecking the "User cannot change password" option
> > in the AD admin tool would cause samba to crash.
> >
> > I fixed this by checking if the acl was null in security_acl_dup
> > function, and returning NULL if that was the case.
>


More information about the samba-technical mailing list