$OpenBSD: patch-librpc_idl_dcerpc_idl,v 1.1 2014/02/06 04:33:24 brad Exp $

DCE-RPC fragment length field is incorrectly checked.
CVE-2013-4408

--- librpc/idl/dcerpc.idl.orig	Wed May  8 04:16:26 2013
+++ librpc/idl/dcerpc.idl	Tue Jan 28 02:16:43 2014
@@ -467,6 +467,7 @@ interface dcerpc
 	const uint8 DCERPC_DREP_OFFSET     =  4;
 	const uint8 DCERPC_FRAG_LEN_OFFSET =  8;
 	const uint8 DCERPC_AUTH_LEN_OFFSET = 10;
+	const uint8 DCERPC_CALL_ID_OFFSET  = 12;
 
 	/* little-endian flag */
 	const uint8 DCERPC_DREP_LE  = 0x10;
