1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-22 13:34:15 +03:00
samba-mirror/libcli
Gary Lockyer 3149ea0a8a CVE-2020-10704: libcli ldap_message: Add search size limits to ldap_decode
Add search request size limits to ldap_decode calls.

The ldap server uses the smb.conf variable
"ldap max search request size" which defaults to 250Kb.
For cldap the limit is hard coded as 4096.

Credit to OSS-Fuzz

REF: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20454
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14334

Signed-off-by: Gary Lockyer <gary@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2020-05-04 02:59:32 +00:00
..
auth CVE-2020-10704: lib util asn1: Add ASN.1 max tree depth 2020-05-04 02:59:31 +00:00
cldap CVE-2020-10704: libcli ldap_message: Add search size limits to ldap_decode 2020-05-04 02:59:32 +00:00
dns build: Do not build selftest binaries for builds without --enable-selftest 2019-11-22 11:48:59 +00:00
drsuapi smbdes: convert sam_rid_crypt() to use gnutls 2019-12-10 00:30:30 +00:00
echo s4: torture: Change torture_register_suite() to add a TALLOC_CTX *. 2017-05-05 15:52:11 +02:00
http build: libcli/http does not need samba3core, only gensec 2019-12-08 20:24:31 +00:00
ldap CVE-2020-10704: libcli ldap_message: Add search size limits to ldap_decode 2020-05-04 02:59:32 +00:00
lsarpc libcli/lsarpc: add struct trustAuthInOutBlob; forward declaration 2014-04-02 09:03:42 +02:00
named_pipe_auth tstream_npa: Set local server name in auth requests 2019-10-18 16:07:35 +00:00
nbt py3: Remove #define PyInt_FromLong PyLong_FromLong 2020-03-23 19:12:43 +00:00
netlogon libcls/netlogon: clang: Fix 'initialization value is never read' 2019-07-16 22:52:24 +00:00
registry build: Make util_reg subsystem in libcli/registry a library 2011-05-18 16:12:08 +02:00
samsync smbdes: convert sam_rid_crypt() to use gnutls 2019-12-10 00:30:30 +00:00
security libcli: Use ARRAY_DEL_ELEMENT() in security_descriptor_acl_del() 2020-03-26 14:43:31 +00:00
smb libsmb: Make sure that the TCP socket is non-blocking 2020-03-25 09:04:28 +00:00
smbreadline libcli:smbreadline: Use #ifdef instead of #if for config.h definitions 2018-11-28 23:19:22 +01:00
util lib/crypto: move gnutls error wrapper to own subsystem 2019-06-27 12:54:22 +00:00