1
0
mirror of https://github.com/samba-team/samba.git synced 2025-01-13 13:18:06 +03:00
samba-mirror/source4
Nadezhda Ivanova 08187833fe CVE-2020-25720: s4-acl: Change behavior of Create Children check
Up to now, the rights to modify an attribute were not checked during an LDAP
add operation. This means that even if a user has no right to modify
an attribute, they can still specify any value during object creation,
and the validated writes were not checked.
This patch changes this behavior. During an add operation,
a security descriptor is created that does not include the one provided by the
user, and is used to verify that the user has the right to modify the supplied attributes.
Exception is made for an object's mandatory attributes, and if the user has Write DACL right,
further checks are skipped.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14810

Pair-Programmed-With: Joseph Sutton <josephsutton@catalyst.net.nz>

Signed-off-by: Nadezhda Ivanova <nivanova@symas.com>
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2022-09-16 02:32:36 +00:00
..
auth CVE-2021-20251 s4:auth_winbind: Check return status of authsam_logon_success_accounting() 2022-09-12 23:07:38 +00:00
cldap_server s4: rename source4/smbd/ to source4/samba/ 2020-11-27 10:07:18 +00:00
client s4:client: Fix shellcheck errors in test_smbclient.sh 2022-08-22 14:20:36 +00:00
cluster dbwrap: Remove calls to loadparm 2018-04-24 01:53:19 +02:00
dns_server CVE-2022-32746 ldb: Make use of functions for appending to an ldb_message 2022-07-27 10:52:36 +00:00
dsdb CVE-2020-25720: s4-acl: Change behavior of Create Children check 2022-09-16 02:32:36 +00:00
echo_server s4: rename source4/smbd/ to source4/samba/ 2020-11-27 10:07:18 +00:00
include lib: Remove smb_threads from includes.h 2022-04-26 21:41:29 +00:00
kdc CVE-2021-20251 s4:kdc: Check badPwdCount update return status 2022-09-12 23:07:37 +00:00
ldap_server ldap_server: Fix typos 2022-04-26 21:41:29 +00:00
lib CVE-2022-32746 s4/registry: Use LDB_FLAG_MOD_TYPE() for flags equality check 2022-07-27 10:52:36 +00:00
libcli CVE-2020-25720: s4-acl: Change behavior of Create Children check 2022-09-16 02:32:36 +00:00
libnet s4:libnet: Add support for samr_ChangePasswordUser4() 2022-07-28 11:51:29 +00:00
librpc claims.idl: Add claim type definitions 2022-09-09 00:14:38 +00:00
nbt_server CVE-2022-32746 ldb: Make use of functions for appending to an ldb_message 2022-07-27 10:52:36 +00:00
ntp_signd s4: rename source4/smbd/ to source4/samba/ 2020-11-27 10:07:18 +00:00
ntvfs pybindings: xattr_native raises OSError not TypeError 2022-09-07 05:01:37 +00:00
param s4:param: add --option="libsmb:client_guid=6112f7d3-9528-4a2a-8861-0ca129aae6c4" support... 2022-08-11 18:28:36 +00:00
rpc_server CVE-2021-20251 s4-rpc_server: Extend scope of transaction for ChangePasswordUser3 2022-09-12 23:07:38 +00:00
samba Happy New Year 2022! 2022-01-01 01:24:21 +00:00
script s4:script: Fix shellcheck errors in find_unused_options.sh 2022-08-22 14:20:36 +00:00
scripting samba-tool: binary uses samba_tool function 2022-09-08 22:34:36 +00:00
selftest CVE-2021-20251 tests/krb5: Add tests for password lockout race 2022-09-12 23:07:37 +00:00
setup python:tests: Allocate OID range for testing to avoid collisions 2022-08-25 13:55:47 +00:00
smb_server s4:smb_server: don't set mapped_state explicitly in auth_usersupplied_info 2022-03-10 03:16:35 +00:00
torture s4:torture: Zero samr_UserInfo union in password set test 2022-09-12 23:07:37 +00:00
utils s4:utils: Fix shellcheck errors in test_samba_tool.sh 2022-08-22 20:35:36 +00:00
winbind CVE-2022-32746 ldb: Make use of functions for appending to an ldb_message 2022-07-27 10:52:36 +00:00
wrepl_server s4: rename source4/smbd/ to source4/samba/ 2020-11-27 10:07:18 +00:00
.clang_complete
.valgrind_suppressions
wscript_build s4:client: Migrate cifsdd to new cmdline option parser 2021-06-16 00:34:38 +00:00