[Samba] CVE-2019-14907 impact on smbd daemon

Andrew Bartlett abartlet at samba.org
Fri Jan 24 08:36:40 UTC 2020

On Fri, 2020-01-24 at 08:29 +0000, Madhappan, Silambarasan via samba
> Thank you, Andrew Bartlett for detailed clarification.

Thanks.  Once further clarification:  I said it was a NULL dereference,
but it is/was a read beyond the end of the supplied buffer.  If the CPU
encounters the end of the mapped memory before a \0 (NUL) byte in the
buffer being converted from, it will fault the process.

Andrew Bartlett

Andrew Bartlett                       http://samba.org/~abartlet/
Authentication Developer, Samba Team  http://samba.org
Samba Developer, Catalyst IT          http://catalyst.net.nz/services/samba

More information about the samba mailing list