projects
/
reactos.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
9e478e9
)
[NTORKRNL]
author
Eric Kohl
<eric.kohl@reactos.org>
Wed, 31 Mar 2010 21:02:38 +0000
(21:02 +0000)
committer
Eric Kohl
<eric.kohl@reactos.org>
Wed, 31 Mar 2010 21:02:38 +0000
(21:02 +0000)
SepAccessCheck: Deny access if the DACL is is empty (but not NULL).
svn path=/trunk/; revision=46629
reactos/ntoskrnl/se/semgr.c
patch
|
blob
|
history
diff --git
a/reactos/ntoskrnl/se/semgr.c
b/reactos/ntoskrnl/se/semgr.c
index
6885cb7
..
d06fb04
100644
(file)
--- a/
reactos/ntoskrnl/se/semgr.c
+++ b/
reactos/ntoskrnl/se/semgr.c
@@
-457,6
+457,14
@@
SepAccessCheck(IN PSECURITY_DESCRIPTOR SecurityDescriptor,
}
}
+ /* Deny access if the DACL is empty */
+ if (Dacl->AceCount == 0)
+ {
+ *GrantedAccess = 0;
+ *AccessStatus = STATUS_ACCESS_DENIED;
+ return FALSE;
+ }
+
/* RULE 3: Check whether the token is the owner */
Status = RtlGetOwnerSecurityDescriptor(SecurityDescriptor,
&Sid,