[PATCH 1/1] cifs: potential memory leaks when parsing mnt opts

Taesoo Kim taesoo at gatech.edu
Sat Mar 21 21:23:40 MDT 2015

On 03/21/15 at 09:10pm, Scott Lovenberg wrote:
> On Sat, Mar 21, 2015 at 6:08 PM, Taesoo Kim <tsgatesv at gmail.com> wrote:
> > Althouhg mkfs.cifs in userspace performs a bit of sanitization
> > (e.g., forcing one user option), current implementation is not
> > robust. Other options such as iocharset and domainanme are similary
> > vulnerable.
> >
> I assume you mean mount.cifs?  :-) Anyways, good catch.

Right. FYI, I've tried mangling password field (e.g., pass=a,user=A
&c); Skimming through the code (just a few minutes), there are a few
potential places that don't sanitize its string, unlike passwd. But
don't have much time to play with for now :)

> -- 
> Peace and Blessings,
> -Scott.

More information about the samba-technical mailing list