Intravision/reactos
1
0
Fork 0
mirror of https://github.com/reactos/reactos.git synced 2025-01-03 21:09:19 +00:00
Code Issues Projects Releases Packages Wiki Activity

[NTOSKRNL]

Browse source 
SeValidSecurityDescriptor does not correctly check for invalid DACL revision numbers. Patch by Samuel Serapion.

CORE-7209 #resolve #comment Committed in r59075.

svn path=/trunk/; revision=59075
This commit is contained in:
Eric Kohl 2013-05-24 09:07:46 +00:00
parent 5ad38a47d0
commit c2b2763cba
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
reactos/ntoskrnl/se/sd.c
View file

@ -1088,7 +1088,7 @@ SeValidSecurityDescriptor(IN ULONG Length,
}
Acl = (PACL)((ULONG_PTR)SecurityDescriptor + SecurityDescriptor->Dacl);
if ((Acl->AclRevision < MIN_ACL_REVISION) &&
if ((Acl->AclRevision < MIN_ACL_REVISION) ||
(Acl->AclRevision > MAX_ACL_REVISION))
{
DPRINT1("Invalid DACL revision\n");