CVE-2016-2110: libcli/auth: pass server_timestamp to SMBNTLMv2encrypt_hash()

BUG: https://bugzilla.samba.org/show_bug.cgi?id=11644 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Günther Deschner <gd@samba.org>
author: Stefan Metzmacher <metze@samba.org> 2015-11-20 09:31:35 +0100
committer: Stefan Metzmacher <metze@samba.org> 2016-04-12 19:25:23 +0200
commit: 4c4829634f76d7b67eec3b420f58419ff6ae5d02 (patch)
tree: 0ec39a9f7fed42b56a178183cd311683fb7880cb /source4/auth
parent: bbaba64329f21bb89fd83f2fff8bdfe8f97b15eb (diff)
download: samba-4c4829634f76d7b67eec3b420f58419ff6ae5d02.tar.gz
1 files changed, 3 insertions, 1 deletions
diff --git a/source4/auth/ntlm/auth_util.c b/source4/auth/ntlm/auth_util.c
index 16977fa00a3..3e5a0da59c2 100644
--- a/source4/auth/ntlm/auth_util.c
+++ b/source4/auth/ntlm/auth_util.c
@@ -350,7 +350,9 @@ NTSTATUS encrypt_user_info(TALLOC_CTX *mem_ctx, struct auth4_context *auth_conte
 				if (!SMBNTLMv2encrypt_hash(user_info_temp,
 							   user_info_in->client.account_name, 
 							   user_info_in->client.domain_name, 
-							   user_info_in->password.hash.nt->hash, &chall_blob,
+							   user_info_in->password.hash.nt->hash,
+							   &chall_blob,
+							   NULL, /* server_timestamp */
 							   &names_blob,
 							   &lmv2_response, &ntlmv2_response, 
 							   &lmv2_session_key, &ntlmv2_session_key)) {
author	Stefan Metzmacher <metze@samba.org>	2015-11-20 09:31:35 +0100
committer	Stefan Metzmacher <metze@samba.org>	2016-04-12 19:25:23 +0200
commit	4c4829634f76d7b67eec3b420f58419ff6ae5d02 (patch)
tree	0ec39a9f7fed42b56a178183cd311683fb7880cb /source4/auth
parent	bbaba64329f21bb89fd83f2fff8bdfe8f97b15eb (diff)
download	samba-4c4829634f76d7b67eec3b420f58419ff6ae5d02.tar.gz