[PATCH] Fix bug 12721 - CVE-2017-2619 regression with "follow symlinks = no"
Uri Simchoni
uri at samba.org
Mon Mar 27 20:44:19 UTC 2017
On 03/27/2017 10:23 PM, Jeremy Allison wrote:
> This one was really interesting. It actually isn't
> related (directly) to the CVE-2017-2619 fix. That
> fix exposed an incorrect assumption that Samba has
> had for a few years. Quite simply, on a POSIX
> filesystem the directory entries "." and ".."
> by design can *NEVER* be symlinks - and we were treating
> them as if they could be.
>
> Fix and regression test attached.
>
> Please review and push if happy, and I'll back-port
> for the production releases.
>
> Jeremy.
>
Pushed.
Thanks,
Uri.
More information about the samba-technical
mailing list