1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-22 13:34:15 +03:00
samba-mirror/source4/dsdb
Joseph Sutton 1cfaa078ff CVE-2023-0614 s4-dsdb: Treat confidential attributes as unindexed
In the unlikely case that someone adds a confidential indexed attribute
to the schema, LDAP search expressions on that attribute could disclose
information via timing differences. Let's not use the index for searches
on confidential attributes.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15270

Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2023-03-20 10:03:38 +01:00
..
common CVE-2023-0614 s4-dsdb: Add samdb_result_dom_sid_buf() 2023-03-20 10:03:38 +01:00
dns s4: rename source4/smbd/ to source4/samba/ 2020-11-27 10:07:18 +00:00
kcc dsdb periodic: DNS: split aging from tombstone deletion 2021-06-20 23:26:32 +00:00
repl s4-libnet: Add messages to object count mismatch failures 2022-10-07 08:45:15 +00:00
samdb CVE-2023-0614 s4-dsdb: Treat confidential attributes as unindexed 2023-03-20 10:03:38 +01:00
schema CVE-2023-0614 s4-dsdb: Treat confidential attributes as unindexed 2023-03-20 10:03:38 +01:00
tests/python CVE-2023-0614 ldb: Prevent disclosure of confidential attributes 2023-03-20 10:03:38 +01:00
pydsdb.c CVE-2022-37966 s4:pydsdb: add ENC_HMAC_SHA1_96_AES256_SK 2022-12-14 10:28:17 +00:00
samdb.pc.in
wscript_build CVE-2020-25718 dsdb: Bring sid_helper.c into common code as rodc_helper.c 2021-11-09 19:45:34 +00:00