Author: janderwald Date: Fri Jul 13 13:34:16 2007 New Revision: 27625 URL: http://svn.reactos.org/svn/reactos?rev=27625&view=rev Log: - fix Buffer overflow in CmpHiveRootSecurityDescriptor - patch by w3seek See issue #2401 for more details. Modified: trunk/reactos/ntoskrnl/config/cmse.c Modified: trunk/reactos/ntoskrnl/config/cmse.c URL: http://svn.reactos.org/svn/reactos/trunk/reactos/ntoskrnl/config/cmse.c?rev… ============================================================================== --- trunk/reactos/ntoskrnl/config/cmse.c (original) +++ trunk/reactos/ntoskrnl/config/cmse.c Fri Jul 13 13:34:16 2007 @@ -24,7 +24,7 @@ NTSTATUS Status; PSECURITY_DESCRIPTOR SecurityDescriptor; PACL Acl, AclCopy; - PSID Sid[3]; + PSID Sid[4]; SID_IDENTIFIER_AUTHORITY WorldAuthority = {SECURITY_WORLD_SID_AUTHORITY}; SID_IDENTIFIER_AUTHORITY NtAuthority = {SECURITY_NT_AUTHORITY}; ULONG AceLength, AclLength, SidLength;