[Samba] CVE-2019-14907 impact on smbd daemon
Andrew Bartlett
abartlet at samba.org
Fri Jan 24 08:36:40 UTC 2020
On Fri, 2020-01-24 at 08:29 +0000, Madhappan, Silambarasan via samba
wrote:
> Thank you, Andrew Bartlett for detailed clarification.
Thanks. Once further clarification: I said it was a NULL dereference,
but it is/was a read beyond the end of the supplied buffer. If the CPU
encounters the end of the mapped memory before a \0 (NUL) byte in the
buffer being converted from, it will fault the process.
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Catalyst IT http://catalyst.net.nz/services/samba
More information about the samba
mailing list