sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-03-16 06:50:24 +03:00
Code
samba-mirror/source3/winbindd
History
Volker Lendecke a3944de699 CVE-2022-2127: winbindd: Fix WINBINDD_PAM_AUTH_CRAP length checks 
With WBFLAG_BIG_NTLMV2_BLOB being set plus lm_resp_len too large you
can crash winbind. We don't independently check lm_resp_len
sufficiently.

Discovered via Coverity ID 1504444 Out-of-bounds access

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15072

Signed-off-by: Volker Lendecke <vl@samba.org>
2023-07-14 15:14:46 +02:00
..
idmap_hash
idmap_hash: remember new domain sids in idmap_hash_sid_to_id()
2023-03-30 15:10:10 +00:00
idmap_ad_nss.c
s3:winbind: Pass a memory context to ads_idmap_cached_connection()
2022-06-27 15:50:29 +00:00
idmap_ad.c
winbind: Create local krb5.conf for idmap backend ad
2022-05-31 19:17:34 +00:00
idmap_autorid_tdb.c
s3: safe_string: do not include string_wrappers.h
2020-08-28 00:56:34 +00:00
idmap_autorid.c
idmap_autorid: fix ID_REQUIRE_TYPE for more than one SID for an unknown domain
2023-03-30 15:10:10 +00:00
idmap_ldap.c
lib: give global_contexts.c its own header file
2021-01-08 20:31:33 +00:00
idmap_nss.c
CVE-2020-25727: idmap_nss: verify that the name of the sid belongs to the configured domain
2021-11-15 18:10:28 +00:00
idmap_passdb.c
winbindd/idmap: apply const to struct idmap_methods pointers
2020-10-23 03:25:35 +00:00
idmap_proto.h
winbindd/idmap: apply const to struct idmap_methods pointers
2020-10-23 03:25:35 +00:00
idmap_rfc2307.c
s3:libads: Allocate ADS_STRUCT under a talloc context
2022-06-27 15:50:30 +00:00
idmap_rid.c
winbindd/idmap: apply const to struct idmap_methods pointers
2020-10-23 03:25:35 +00:00
idmap_rw.c
winbindd: allow idmap backends to mark entries with ID_[TYPE_WB_]REQUIRE_TYPE
2020-10-23 03:25:37 +00:00
idmap_rw.h
idmap_script.c
idmap_script: Save a few lines with str_list_add_printf()
2021-10-08 19:28:31 +00:00
idmap_tdb2.c
winbindd/idmap: apply const to struct idmap_methods pointers
2020-10-23 03:25:35 +00:00
idmap_tdb_common.c
winbindd: allow idmap backends to mark entries with ID_[TYPE_WB_]REQUIRE_TYPE
2020-10-23 03:25:37 +00:00
idmap_tdb_common.h
idmap_tdb.c
winbindd/idmap: apply const to struct idmap_methods pointers
2020-10-23 03:25:35 +00:00
idmap_util.c
idmap_rfc2307: Don't stop after 30 entries
2017-05-08 21:08:23 +02:00
idmap.c
winbindd/idmap: apply const to struct idmap_methods pointers
2020-10-23 03:25:35 +00:00
nss_info_template.c
lib: modules: Change XXX_init interface from XXX_init(void) to XXX_init(TALLOC_CTX *)
2017-04-22 01:17:00 +02:00
nss_info.c
winbindd/idmap: apply const to struct nss_info_methods pointers
2020-10-23 03:25:35 +00:00
wb_dsgetdcname.c
s3:winbind: Improve logging in wb_dsgetdcname.c
2022-07-15 14:25:38 +00:00
wb_getgrsid.c
s3:winbind: Improve logging in wb_getgrsid.c
2022-07-15 14:25:38 +00:00
wb_getpwsid.c
s3:winbind: Improve logging in wb_getpwsid.c
2022-07-15 14:25:38 +00:00
wb_gettoken.c
s3:winbind: Add additional debug level check to wb_gettoken_recv()
2022-07-21 13:47:31 +00:00
wb_group_members.c
s3:winbind: Change '%u' to '%PRIu32' for uint32_t in wb_group_members.c
2022-07-21 13:47:31 +00:00
wb_lookupname.c
s3:winbind: Improve logging in wb_lookupname.c
2022-07-15 14:25:38 +00:00
wb_lookupsid.c
s3:winbind: Improve logging in wb_lookupsid.c
2022-07-15 14:25:38 +00:00
wb_lookupsids.c
s3:winbind: Add additional debug level check to wb_lookupsids_send()
2022-07-21 14:41:53 +00:00
wb_lookupuseraliases.c
s3:winbind: Change '%u' to '%PRIu32' for uint32_t in wb_lookupuseraliases.c
2022-07-21 13:47:31 +00:00
wb_lookupusergroups.c
s3/winbindd: Fix bad access to sid array (with debug level >= info)
2022-09-03 08:18:15 +00:00
wb_next_grent.c
s3:winbind: Improve logging in wb_next_grent.c
2022-07-15 14:25:38 +00:00
wb_next_pwent.c
s3:winbind: Change '%u' to '%PRIu32' for uint32_t in wb_next_pwent.c
2022-07-21 13:47:31 +00:00
wb_query_group_list.c
s3:winbind: Change '%u' to '%PRIu32' for uint32_t in wb_query_group_list.c
2022-07-21 13:47:31 +00:00
wb_query_user_list.c
s3:winbind: Change '%u' to '%PRIu32' for uint32_t in wb_query_user_list.c
2022-07-21 13:47:31 +00:00
wb_queryuser.c
s3:winbind: Change '%u' to '%PRIu32' for uint32_t in wb_queryuser.c
2022-07-21 13:47:31 +00:00
wb_seqnum.c
wb_seqnums.c
winbindd: Use talloc_zero_array for consistency with other winbindd_domain allocators
2018-03-24 07:21:37 +01:00
wb_sids2xids.c
s3:winbind: Change '%u' to '%PRIu32' for uint32_t in wb_sids2xids.c
2022-07-21 13:47:31 +00:00
wb_xids2sids.c
winbind: Fix the 32-bit build
2022-07-23 23:29:38 +00:00
winbindd_ads.c
s3:libads: Allocate ads->auth.password under ADS_STRUCT talloc context
2022-06-27 15:50:30 +00:00
winbindd_ads.h
s3:winbind: Pass a memory context to ads_idmap_cached_connection()
2022-06-27 15:50:29 +00:00
winbindd_allocate_gid.c
winbindd: Fix a startup race with allocate_gid
2021-03-24 20:31:30 +00:00
winbindd_allocate_uid.c
winbind: ensure wb_parent_idmap_setup_send() gets called in winbindd_allocate_uid_send()
2021-09-02 15:20:06 +00:00
winbindd_cache.c
s3:winbindd: call reset_cm_connection_on_error() in wb_cache_query_user_list()
2023-07-06 12:31:16 +00:00
winbindd_ccache_access.c
Fix spelling mistakes
2018-11-30 03:35:13 +01:00
winbindd_change_machine_acct.c
winbindd_check_machine_acct.c
winbindd_cm.c
CVE-2022-38023 s3:winbindd: also allow per domain "winbind sealed pipes:DOMAIN" and "require strong key:DOMAIN"
2022-12-14 11:39:16 +00:00
winbindd_cred_cache.c
s3:winbind: Use the canonical realm name to renew the credentials
2022-07-12 12:38:55 +00:00
winbindd_creds.c
Fix gcc11 compiler issue "-Werror=stringop-overflow="
2021-05-07 06:23:32 +00:00
winbindd_domain_info.c
s3:winbind: Convert Ping parent/child call to NDR
2022-03-25 17:03:29 +00:00
winbindd_domain.c
s3:winbind: Remove struct winbindd_child_dispatch_table
2022-05-19 18:50:24 +00:00
winbindd_dsgetdcname.c
s3:winbind: Improve logging in winbindd_dsgetdcname.c
2022-07-15 14:25:38 +00:00
winbindd_dual_ndr.c
s3:winbind: Set local and remote addresses in the crafted dcesrv_conn
2022-04-08 20:13:37 +00:00
winbindd_dual_srv.c
lib/util: Change function to mem_equal_const_time()
2022-06-09 22:49:29 +00:00
winbindd_dual.c
winbindd: don't call set_domain_online_request() in the idmap child
2023-03-30 15:10:10 +00:00
winbindd_endgrent.c
s3:winbind: Improve logging in winbindd_endgrent.c
2022-07-15 14:25:38 +00:00
winbindd_endpwent.c
s3:winbind: Improve logging in winbindd_endpwent.c
2022-07-15 14:25:38 +00:00
winbindd_getdcname.c
s3:winbind: Improve logging in winbindd_getdcname.c
2022-07-15 14:25:38 +00:00
winbindd_getgrent.c
s3:winbind: Change '%u' to '%PRIu32' for uint32_t in winbindd_getgrent.c
2022-07-21 13:47:31 +00:00
winbindd_getgrgid.c
s3:winbind: Change '%u' to '%PRIu32' for uint32_t in winbindd_getgrgid.c
2022-07-21 13:47:31 +00:00
winbindd_getgrnam.c
s3:winbind: Change '%u' to '%PRIu32' for uint32_t in winbindd_getgrnam.c
2022-07-21 13:47:31 +00:00
winbindd_getgroups.c
s3:winbind: Add additional debug level check to winbindd_getgroups_recv()
2022-07-21 13:47:31 +00:00
winbindd_getpwent.c
s3:winbind: Change '%u' to '%PRIu32' for uint32_t in winbindd_getpwent.c
2022-07-21 13:47:31 +00:00
winbindd_getpwnam.c
s3:winbind: Improve logging in winbindd_getpwnam.c
2022-07-15 14:25:38 +00:00
winbindd_getpwsid.c
s3:winbind: Improve logging in winbindd_getpwsid.c
2022-07-15 14:25:38 +00:00
winbindd_getpwuid.c
s3:winbind: Improve logging in winbindd_getpwuid.c
2022-07-15 14:25:38 +00:00
winbindd_getsidaliases.c
s3:winbind: Add additional debug level check to winbindd_getsidaliases_send()
2022-07-21 13:47:31 +00:00
winbindd_getuserdomgroups.c
s3:winbind: Change '%u' to '%PRIu32' for uint32_t in winbindd_getuserdomgroups.c
2022-07-21 13:47:31 +00:00
winbindd_getusersids.c
s3:winbind: Change '%u' to '%PRIu32' for uint32_t in winbindd_getusersids.c
2022-07-21 13:47:31 +00:00
winbindd_gpupdate.c
lib: give global_contexts.c its own header file
2021-01-08 20:31:33 +00:00
winbindd_group.c
s3:winbind: Improve logging in winbindd_group.c
2022-07-15 14:25:38 +00:00
winbindd_idmap.c
s3:winbind: Remove struct winbindd_child_dispatch_table
2022-05-19 18:50:24 +00:00
winbindd_irpc.c
s3:winbind: Move imessaging context init function to winbindd-lib subsystem
2022-04-08 20:13:37 +00:00
winbindd_list_groups.c
s3:winbind: Change '%u' to '%PRIu32' for uint32_t in winbindd_list_groups.c
2022-07-21 13:47:31 +00:00
winbindd_list_users.c
s3:winbind: Change '%u' to '%PRIu32' for uint32_t in winbindd_list_users.c
2022-07-21 13:47:31 +00:00
winbindd_locator.c
s3:winbind: Remove struct winbindd_child_dispatch_table
2022-05-19 18:50:24 +00:00
winbindd_lookupname.c
s3:winbind: Improve logging in winbindd_lookupname.c
2022-07-15 14:25:38 +00:00
winbindd_lookuprids.c
s3: safe_string: do not include string_wrappers.h
2020-08-28 00:56:34 +00:00
winbindd_lookupsid.c
s3: safe_string: do not include string_wrappers.h
2020-08-28 00:56:34 +00:00
winbindd_lookupsids.c
CVE-2020-14323 winbind: Fix invalid lookupsids DoS
2020-10-29 10:25:37 +00:00
winbindd_misc.c
s3:winbind: Move servide reload related functions to winbindd-lib subsystem
2022-04-08 20:13:37 +00:00
winbindd_msrpc.c
s3:winbindd: make use of reset_cm_connection_on_error() for winbindd_lookup_{names,sids}()
2023-07-06 12:31:16 +00:00
winbindd_ndr.c
s3:winbind: Remove struct winbindd_child_dispatch_table
2022-05-19 18:50:24 +00:00
winbindd_pam_auth_crap.c
CVE-2022-2127: winbindd: Fix WINBINDD_PAM_AUTH_CRAP length checks
2023-07-14 15:14:46 +02:00
winbindd_pam_auth.c
s3:winbind: Improve logging in winbindd_pam_auth.c
2022-07-15 14:25:38 +00:00
winbindd_pam_chauthtok.c
s3:winbind: Convert winbindd_dual_pam_chauthtok() from struct based to NDR based
2022-05-19 17:51:33 +00:00
winbindd_pam_chng_pswd_auth_crap.c
s3:winbind: Convert winbindd_dual_pam_chng_pswd_auth_crap() from struct based to NDR based
2022-05-19 17:51:33 +00:00
winbindd_pam_logoff.c
s3:winbind: Improve logging in winbindd_pam_logoff.c
2022-07-15 14:25:38 +00:00
winbindd_pam.c
s3:winbindd: let winbind_samlogon_retry_loop() fallback to NT_STATUS_NO_LOGON_SERVERS
2023-07-06 13:29:28 +00:00
winbindd_ping_dc.c
winbindd: Fix winbindd_ping_dc_recv
2018-06-16 01:06:36 +02:00
winbindd_proto.h
s3:winbind: Change num_groups from int to uint32_t in wb_query_group_list_recv()
2022-07-15 14:25:38 +00:00
winbindd_reconnect_ads.c
winbindd: remove obsolete sequence_number from struct winbindd_methods
2021-04-29 15:49:16 +00:00
winbindd_reconnect.c
winbindd: remove obsolete sequence_number from struct winbindd_methods
2021-04-29 15:49:16 +00:00
winbindd_rpc.c
s3:winbindd: Remove unused rpc_sequence_number()
2021-04-29 15:01:29 +00:00
winbindd_rpc.h
s3:winbindd: Remove unused rpc_sequence_number()
2021-04-29 15:01:29 +00:00
winbindd_samr.c
winbind: Fix "wbinfo -u" on a Samba AD DC with >1000 users
2023-05-09 15:38:51 +00:00
winbindd_setgrent.c
s3:winbind: Improve logging in winbindd_setgrent.c
2022-07-15 14:25:38 +00:00
winbindd_setpwent.c
s3:winbind: Improve logging in winbindd_setpwent.c
2022-07-15 14:25:38 +00:00
winbindd_show_sequence.c
winbindd_sids_to_xids.c
s3:winbind: Change '%u' to '%PRIu32' for uint32_t in winbindd_sids_to_xids.c
2022-07-21 13:47:31 +00:00
winbindd_traceid.c
s3:winbindd add "'winbind debug traceid" support via tevent tracing
2022-05-10 17:31:31 +00:00
winbindd_traceid.h
s3:winbindd add "'winbind debug traceid" support via tevent tracing
2022-05-10 17:31:31 +00:00
winbindd_util.c
s3:winbind: Move winbindd_dual_init_connection() function
2022-05-19 17:51:33 +00:00
winbindd_wins_byip.c
s3:winbind: Improve logging in winbindd_wins_byip.c
2022-07-15 14:25:38 +00:00
winbindd_wins_byname.c
winbind: Fix the 32-bit build
2022-07-23 23:29:38 +00:00
winbindd_xids_to_sids.c
s3:winbind: Change '%u' to '%PRIu32' for uint32_t in winbindd_xids_to_sids.c
2022-07-21 13:47:31 +00:00
winbindd.c
s3:winbind: Improve logging in winbindd.c
2022-07-15 14:25:38 +00:00
winbindd.h
s3:winbind: Change max_groups, num_groups from int to uint32_t in getpwent_state
2022-07-15 14:25:38 +00:00
wscript_build
s3:winbindd add "'winbind debug traceid" support via tevent tracing
2022-05-10 17:31:31 +00:00