CVE-2016-2110: auth/ntlmssp: let gensec_ntlmssp_client_start require NTLM2 (EXTENDED_SESSIONSECURITY) when using ntlmv2

BUG: https://bugzilla.samba.org/show_bug.cgi?id=11644 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Günther Deschner <gd@samba.org>
author: Stefan Metzmacher <metze@samba.org> 2015-12-01 14:54:13 +0100
committer: Stefan Metzmacher <metze@samba.org> 2016-04-12 19:25:22 +0200
commit: 83c71586dc4d46ecc4a129e23f11aa192ca8002f (patch)
tree: 363a5c108471a2a561811243d61fbf277be5286e /auth/ntlmssp
parent: 858ef6a663ba7e47fd5dcd53962d350f4b5af0e5 (diff)
download: samba-83c71586dc4d46ecc4a129e23f11aa192ca8002f.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/auth/ntlmssp/ntlmssp_client.c b/auth/ntlmssp/ntlmssp_client.c
index 1b7f87aa7a1..49933cb11b9 100644
--- a/auth/ntlmssp/ntlmssp_client.c
+++ b/auth/ntlmssp/ntlmssp_client.c
@@ -633,7 +633,7 @@ NTSTATUS gensec_ntlmssp_client_start(struct gensec_security *gensec_security)
 	}
 
 	if (ntlmssp_state->use_ntlmv2) {
-		ntlmssp_state->neg_flags |= NTLMSSP_NEGOTIATE_NTLM2;
+		ntlmssp_state->required_flags |= NTLMSSP_NEGOTIATE_NTLM2;
 		ntlmssp_state->allow_lm_response = false;
 		ntlmssp_state->allow_lm_key = false;
 	}
author	Stefan Metzmacher <metze@samba.org>	2015-12-01 14:54:13 +0100
committer	Stefan Metzmacher <metze@samba.org>	2016-04-12 19:25:22 +0200
commit	83c71586dc4d46ecc4a129e23f11aa192ca8002f (patch)
tree	363a5c108471a2a561811243d61fbf277be5286e /auth/ntlmssp
parent	858ef6a663ba7e47fd5dcd53962d350f4b5af0e5 (diff)
download	samba-83c71586dc4d46ecc4a129e23f11aa192ca8002f.tar.gz