index
:
delta/samba.git
master
old-v4-0-stable
old-v4-0-test
v3-0-stable
v3-0-test
v3-2-stable
v3-2-test
v3-3-stable
v3-3-test
v3-4-stable
v3-4-test
v3-5-stable
v3-5-test
v3-6-stable
v3-6-test
v3-devel
v4-0-stable
v4-0-test
v4-1-stable
v4-1-test
v4-10-stable
v4-10-test
v4-11-stable
v4-11-test
v4-12-stable
v4-12-test
v4-13-stable
v4-13-test
v4-14-stable
v4-14-test
v4-15-stable
v4-15-test
v4-16-stable
v4-16-test
v4-17-stable
v4-17-test
v4-18-stable
v4-18-test
v4-2-stable
v4-2-test
v4-3-stable
v4-3-test
v4-4-stable
v4-4-test
v4-5-stable
v4-5-test
v4-6-stable
v4-6-test
v4-7-stable
v4-7-test
v4-8-stable
v4-8-test
v4-9-stable
v4-9-test
git.samba.org: samba.git
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
source4
/
rpc_server
Commit message (
Expand
)
Author
Age
Files
Lines
*
CVE-2015-5370: s4:rpc_server: only allow one fragmented call_id at a time
Stefan Metzmacher
2016-04-12
1
-62
/
+80
*
CVE-2015-5370: s4:rpc_server: limit allocation and alloc_hint to 4 MByte
Stefan Metzmacher
2016-04-12
1
-5
/
+40
*
CVE-2015-5370: s4:rpc_server: check frag_length for requests
Stefan Metzmacher
2016-04-12
1
-0
/
+15
*
CVE-2015-5370: s4:rpc_server: give the correct reject reasons for invalid aut...
Stefan Metzmacher
2016-04-12
2
-3
/
+38
*
CVE-2015-5370: s4:rpc_server: disconnect after a failing dcesrv_auth_request()
Stefan Metzmacher
2016-04-12
1
-0
/
+7
*
CVE-2015-5370: s4:rpc_server: let a failing auth3 mark the authentication as ...
Stefan Metzmacher
2016-04-12
3
-1
/
+13
*
CVE-2015-5370: s4:rpc_server: failing authentication should generate a SEC_PK...
Stefan Metzmacher
2016-04-12
1
-7
/
+1
*
CVE-2015-5370: s4:rpc_server: fix the order of error checking in dcesrv_alter()
Stefan Metzmacher
2016-04-12
1
-6
/
+18
*
CVE-2015-5370: s4:rpc_server: changing an existing presentation context via a...
Stefan Metzmacher
2016-04-12
1
-0
/
+21
*
CVE-2015-5370: s4:rpc_server: don't derefence an empty ctx_list array in dces...
Stefan Metzmacher
2016-04-12
1
-4
/
+10
*
CVE-2015-5370: s4:rpc_server: remove pointless dcesrv_find_context() from dce...
Stefan Metzmacher
2016-04-12
1
-6
/
+0
*
CVE-2015-5370: s4:rpc_server: let invalid request fragments disconnect the co...
Stefan Metzmacher
2016-04-12
1
-11
/
+12
*
CVE-2015-5370: s4:rpc_server: make sure alter_context and auth3 can't change ...
Stefan Metzmacher
2016-04-12
1
-0
/
+24
*
CVE-2015-5370: s4:rpc_server: maintain in and out struct dcerpc_auth per dces...
Stefan Metzmacher
2016-04-12
4
-72
/
+94
*
CVE-2015-5370: s4:rpc_server: ensure that the message ordering doesn't violat...
Stefan Metzmacher
2016-04-12
3
-2
/
+59
*
CVE-2015-5370: s4:rpc_server: verify the protocol headers before processing pdus
Stefan Metzmacher
2016-04-12
1
-3
/
+103
*
CVE-2015-5370: s4:rpc_server: add infrastructure to terminate a connection af...
Stefan Metzmacher
2016-04-12
2
-1
/
+62
*
CVE-2015-5370: s4:rpc_server: make dcesrv_process_ncacn_packet() static
Stefan Metzmacher
2016-04-12
1
-3
/
+3
*
CVE-2015-5370: s4:rpc_server: return the correct secondary_address in dcesrv_...
Stefan Metzmacher
2016-04-12
1
-4
/
+27
*
CVE-2015-5370: s4:rpc_server: add some padding to dcesrv_bind_nak() responses
Stefan Metzmacher
2016-04-12
1
-1
/
+2
*
CVE-2015-5370: s4:rpc_server: split out a dcesrv_fault_with_flags() helper fu...
Stefan Metzmacher
2016-04-12
1
-3
/
+8
*
CVE-2015-5370: s4:rpc_server: fill context_id in dcesrv_fault()
Stefan Metzmacher
2016-04-12
1
-1
/
+14
*
CVE-2015-5370: s4:rpc_server: set alloc_hint = 24 in dcesrv_fault()
Stefan Metzmacher
2016-04-12
1
-1
/
+1
*
CVE-2015-5370: s4:rpc_server: avoid ZERO_STRUCT() in dcesrv_fault()
Stefan Metzmacher
2016-04-12
1
-4
/
+2
*
CVE-2015-5370: s4:rpc_server: correctly maintain dcesrv_connection->max_{recv...
Stefan Metzmacher
2016-04-12
3
-10
/
+27
*
CVE-2015-5370: s4:rpc_server/netlogon: make use of dce_call->conn->auth_state...
Stefan Metzmacher
2016-04-12
1
-12
/
+4
*
CVE-2015-5370: s4:rpc_server/samr: make use of dce_call->conn->auth_state.aut...
Stefan Metzmacher
2016-04-12
1
-6
/
+1
*
CVE-2015-5370: s4:rpc_server/lsa: make use of dce_call->conn->auth_state.auth...
Stefan Metzmacher
2016-04-12
1
-6
/
+6
*
CVE-2015-5370: s4:rpc_server: make use of dce_call->conn->auth_state.auth_* i...
Stefan Metzmacher
2016-04-12
1
-11
/
+6
*
CVE-2015-5370: s4:rpc_server: maintain dcesrv_auth->auth_{type,level,context_id}
Stefan Metzmacher
2016-04-12
2
-6
/
+26
*
CVE-2015-5370: s4:rpc_server: check the result of dcerpc_pull_auth_trailer() ...
Stefan Metzmacher
2016-04-12
1
-0
/
+4
*
CVE-2015-5370: s4:rpc_server: no authentication is indicated by pkt->auth_len...
Stefan Metzmacher
2016-04-12
1
-9
/
+19
*
CVE-2015-5370: s4:rpc_server: make use of talloc_zero()
Stefan Metzmacher
2016-04-12
3
-19
/
+19
*
CVE-2016-2118: s4:rpc_server/samr: allow _samr_ValidatePassword only with PRI...
Stefan Metzmacher
2016-04-12
1
-0
/
+9
*
CVE-2016-2118: s4:rpc_server/rpcecho: allow DCERPC_AUTH_LEVEL_CONNECT by default
Stefan Metzmacher
2016-04-12
1
-0
/
+7
*
CVE-2016-2118: s4:rpc_server/mgmt: allow DCERPC_AUTH_LEVEL_CONNECT by default
Stefan Metzmacher
2016-04-12
1
-0
/
+8
*
CVE-2016-2118: s4:rpc_server/epmapper: allow DCERPC_AUTH_LEVEL_CONNECT by def...
Stefan Metzmacher
2016-04-12
1
-0
/
+8
*
CVE-2016-2118: s4:rpc_server/netlogon: reject DCERPC_AUTH_LEVEL_CONNECT by de...
Stefan Metzmacher
2016-04-12
1
-0
/
+8
*
CVE-2016-2118: s4:rpc_server/samr: reject DCERPC_AUTH_LEVEL_CONNECT by default
Stefan Metzmacher
2016-04-12
1
-0
/
+8
*
CVE-2016-2118: s4:rpc_server/lsa: reject DCERPC_AUTH_LEVEL_CONNECT by default
Stefan Metzmacher
2016-04-12
1
-0
/
+8
*
CVE-2016-2118: s4:rpc_server: make use of "allow dcerpc auth level connect"
Stefan Metzmacher
2016-04-12
2
-0
/
+109
*
CVE-2016-2118: s4:rpc_server/dnsserver: require at least DCERPC_AUTH_LEVEL_IN...
Stefan Metzmacher
2016-04-12
1
-0
/
+8
*
CVE-2016-2118: s4:rpc_server/backupkey: require DCERPC_AUTH_LEVEL_PRIVACY
Stefan Metzmacher
2016-04-12
2
-10
/
+15
*
CVE-2016-2118: s4:rpc_server/drsuapi: require DCERPC_AUTH_LEVEL_PRIVACY
Stefan Metzmacher
2016-04-12
1
-0
/
+8
*
CVE-2016-2118: s4:rpc_server: make it possible to define a min_auth_level on ...
Stefan Metzmacher
2016-04-12
2
-0
/
+69
*
CVE-2016-2111: s4:rpc_server/netlogon: check NTLMv2_RESPONSE values for SEC_C...
Stefan Metzmacher
2016-04-12
1
-0
/
+9
*
CVE-2016-2111: s4:rpc_server/netlogon: require DCERPC_AUTH_LEVEL_PRIVACY for ...
Stefan Metzmacher
2016-04-12
1
-0
/
+10
*
CVE-2016-2111: s4:rpc_server: implement 'server schannel = yes' restriction
Stefan Metzmacher
2016-04-12
1
-1
/
+16
*
s4:rpc_server: require access to the machine account credentials
Stefan Metzmacher
2016-03-17
1
-4
/
+4
*
s4:rpc_server: dcesrv_generic_session_key should only work on local transports
Stefan Metzmacher
2016-03-10
1
-0
/
+7
[next]