Univention Bugzilla – Full Text Bug Listing |
Summary: | smbd constantly crashes when filename contains non-ascii character | ||
---|---|---|---|
Product: | UCS | Reporter: | Tim Petersen <petersen> |
Component: | Samba4 | Assignee: | Arvid Requate <requate> |
Status: | CLOSED FIXED | QA Contact: | Felix Botner <botner> |
Severity: | normal | ||
Priority: | P5 | CC: | gohmann, requate, walkenhorst |
Version: | UCS 3.2 | ||
Target Milestone: | UCS 3.2-3-errata | ||
Hardware: | Other | ||
OS: | Linux | ||
What kind of report is it?: | --- | What type of bug is this?: | --- |
Who will be affected by this bug?: | --- | How will those affected feel about the bug?: | --- |
User Pain: | Enterprise Customer affected?: | ||
School Customer affected?: | ISV affected?: | ||
Waiting Support: | Flags outvoted (downgraded) after PO Review: | ||
Ticket number: | Bug group (optional): | ||
Max CVSS v3 score: | |||
Bug Depends on: | |||
Bug Blocks: | 36216 | ||
Attachments: |
sambabug_10716.patch
98_sambabug_10716.patch |
Description
Tim Petersen
2014-10-13 12:53:07 CEST
Created attachment 6159 [details]
sambabug_10716.patch
Upstream patch, applies cleanly when split into two parts.
Created attachment 6160 [details]
98_sambabug_10716.patch
This is the patch as merged into upstream git.
Advisory: 2014-10-13-samba.yaml can be reproduced with: -> cd /home/Administrator/ -> more a.c #include <stdio.h> #include <stdlib.h> #include <string.h> int main(int argc, char **argv) { char bad_file[] = {'f', 'i', 'l', 'e', '-', 0xE9, 0}; FILE *f; printf("Create %s\n", bad_file); f = fopen(bad_file, "a"); if (f == NULL) perror("fopen"); else fclose(f); return 0; } -> make a -> ./a Create file-� -> mount.cifs //10.200.7.50/Administrator \ -o user=Administrator,pass=univention /mnt/ -> cd /mnt -> ./a => PANIC (pid 31118): ndr_push_share_mode_lock failed OK - works with errata3.2-3 and UCS 4.0 OK - YAML |