Security fix for CVE-2008-1105: Boundary failure when parsing SMB responses

can result in a buffer overrun. Jeremy. (This used to be commit 23b825e9d2c74c5b940cf4d3aa56c18692259972)
author: Jeremy Allison <jra@samba.org> 2008-05-28 09:31:42 -0700
committer: Jeremy Allison <jra@samba.org> 2008-05-28 09:31:42 -0700
commit: d36434f31268b75040311352f23c92c9a61e8cda (patch)
tree: fc19fb649d4a6ecf29f43b872975c7f6eeaeebd3 /source3/include/proto.h
parent: 611072fc1cd94e6c9d56ce910fd13f007f6ecb84 (diff)
download: samba-d36434f31268b75040311352f23c92c9a61e8cda.tar.gz
samba-d36434f31268b75040311352f23c92c9a61e8cda.tar.bz2
samba-d36434f31268b75040311352f23c92c9a61e8cda.zip
1 files changed, 6 insertions, 2 deletions
diff --git a/source3/include/proto.h b/source3/include/proto.h
index 36d75a4d75..761c720497 100644
--- a/source3/include/proto.h
+++ b/source3/include/proto.h
@@ -1582,8 +1582,12 @@ NTSTATUS read_smb_length_return_keepalive(int fd, char *inbuf,
 					  size_t *len);
 NTSTATUS read_smb_length(int fd, char *inbuf, unsigned int timeout,
 			 size_t *len);
-NTSTATUS receive_smb_raw(int fd, char *buffer, unsigned int timeout,
-			 size_t maxlen, size_t *p_len);
+NTSTATUS receive_smb_raw(int fd,
+			char *buffer,
+			size_t buflen,
+			unsigned int timeout,
+			size_t maxlen,
+			size_t *p_len);
 int open_socket_in(int type,
 		uint16_t port,
 		int dlevel,
author	Jeremy Allison <jra@samba.org>	2008-05-28 09:31:42 -0700
committer	Jeremy Allison <jra@samba.org>	2008-05-28 09:31:42 -0700
commit	d36434f31268b75040311352f23c92c9a61e8cda (patch)
tree	fc19fb649d4a6ecf29f43b872975c7f6eeaeebd3 /source3/include/proto.h
parent	611072fc1cd94e6c9d56ce910fd13f007f6ecb84 (diff)
download	samba-d36434f31268b75040311352f23c92c9a61e8cda.tar.gz samba-d36434f31268b75040311352f23c92c9a61e8cda.tar.bz2 samba-d36434f31268b75040311352f23c92c9a61e8cda.zip