From b26668c606057fb30b20efd912284c3e79d547ff Mon Sep 17 00:00:00 2001 From: Andrew Bartlett Date: Thu, 3 Jan 2013 20:39:23 +1100 Subject: libcli/security: Ensure to fill in remaining_access for the initial case (bug #9554 - CVE-2013-0172) It is critically important that we initialise this element as otherwise all access is permitted. Andrew Bartlett Reviewed-by: Stefan Metzmacher (cherry picked from commit a75805490d96a85786287f5d0522dd7671d6816e) --- libcli/security/object_tree.c | 1 + 1 file changed, 1 insertion(+) (limited to 'libcli') diff --git a/libcli/security/object_tree.c b/libcli/security/object_tree.c index 6809c8e345..dcbd310bae 100644 --- a/libcli/security/object_tree.c +++ b/libcli/security/object_tree.c @@ -53,6 +53,7 @@ bool insert_in_object_tree(TALLOC_CTX *mem_ctx, return false; } (*root)->guid = *guid; + (*root)->remaining_access = init_access; *new_node = *root; return true; } -- cgit