From d36434f31268b75040311352f23c92c9a61e8cda Mon Sep 17 00:00:00 2001
From: Jeremy Allison <jra@samba.org>
Date: Wed, 28 May 2008 09:31:42 -0700
Subject: Security fix for CVE-2008-1105: Boundary failure when parsing SMB
 responses can result in a buffer overrun. Jeremy. (This used to be commit
 23b825e9d2c74c5b940cf4d3aa56c18692259972)

---
 source3/smbd/process.c | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

(limited to 'source3/smbd')

diff --git a/source3/smbd/process.c b/source3/smbd/process.c
index c8ad19dd15..71e38634b7 100644
--- a/source3/smbd/process.c
+++ b/source3/smbd/process.c
@@ -120,9 +120,7 @@ static bool valid_packet_size(size_t len)
 	if (len > (BUFFER_SIZE + LARGE_WRITEX_HDR_SIZE)) {
 		DEBUG(0,("Invalid packet length! (%lu bytes).\n",
 					(unsigned long)len));
-		if (len > BUFFER_SIZE + (SAFETY_MARGIN/2)) {
-			return false;
-		}
+		return false;
 	}
 	return true;
 }
-- 
cgit