sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2024-12-27 03:21:53 +03:00
Code
2563f85237
samba-mirror/source4/rpc_server
History
Joseph Sutton fcabcb326d CVE-2021-20251 s4-rpc_server: Extend scope of transaction for ChangePasswordUser3 
Now the initial account search is performed under the transaction,
ensuring the overall password change is atomic. We set DSDB_SESSION_INFO
to drop our privileges to those of the user before we perform the actual
password change, and restore them afterwards if we need to update the
bad password count.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14611

Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Reviewed-by: Andreas Schneider <asn@samba.org>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2022-09-12 23:07:38 +00:00
..
backupkey lib/util: Change function to mem_equal_const_time() 2022-06-09 22:49:29 +00:00
browser
common CVE-2022-32743 s4:rpc_server/common: Add dcesrv_samdb_connect_session_info() 2022-07-28 22:47:38 +00:00
dnsserver s4:rpc_server/dnsserver: make use of dsdb_dc_functional_level() 2021-12-24 02:16:33 +00:00
drsuapi CVE-2021-3738 s4:rpc_server/drsuapi: make use of assoc_group aware dcesrv_samdb_connect_as_*() helpers 2021-11-09 19:45:34 +00:00
echo s4:rpc_server: only pass context to op_bind() hooks 2019-01-12 03:13:39 +01:00
epmapper epmapper: Simplify _epm_Map() 2021-01-28 16:58:35 +00:00
eventlog s4:rpc_server/eventlog: make use of dcesrv_handle_create() 2019-01-12 03:13:34 +01:00
lsa CVE-2022-32746 ldb: Make use of functions for appending to an ldb_message 2022-07-27 10:52:36 +00:00
netlogon CVE-2022-32743 s4:rpc_server/netlogon: Reconnect to samdb as workstation account 2022-07-28 23:41:27 +00:00
remote s4:rpc_server: Check return code of cli_credentials_set_conf() 2021-06-29 02:19:35 +00:00
samr CVE-2021-20251 s4-rpc_server: Extend scope of transaction for ChangePasswordUser3 2022-09-12 23:07:38 +00:00
srvsvc smb.conf: Remove "share backend" option 2021-03-26 03:04:39 +00:00
tests dnsp.idl: fix dnsp_ip4_array definition 2019-06-21 08:49:19 +00:00
unixinfo
winreg s4:rpc_server/winreg: don't cache an ldb connection per presentation context 2019-01-12 03:13:39 +01:00
wkssvc
dcerpc_server.c s4:rpc_server: Fix duplicated function name between s3 and s4 2022-04-08 20:13:37 +00:00
dcerpc_server.h s4:rpc_server: Move core structures and prototypes to core library 2019-10-18 16:07:37 +00:00
dcerpc_server.pc.in
service_rpc.c s4:rpc_server: Fix duplicated function name between s3 and s4 2022-04-08 20:13:37 +00:00
wscript_build CVE-2020-25718 dsdb: Bring sid_helper.c into common code as rodc_helper.c 2021-11-09 19:45:34 +00:00