sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-11 05:18:09 +03:00
Code
34949219ed
samba-mirror/lib
History
Douglas Bagnall 24ddc1ca9c ldb/attrib_handler casefold: simplify space dropping 
As seen in CVE-2021-20277, ldb_handler_fold() has been making mistakes
when collapsing spaces down to a single space.

This patch fixes the way it handles internal spaces (CVE-2021-20277
was about leading spaces), and involves a rewrite of the parsing loop.

The bug has a detailed description of the problem.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14656

Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>

Autobuild-User(master): Andrew Bartlett <abartlet@samba.org>
Autobuild-Date(master): Wed Apr  7 03:16:39 UTC 2021 on sn-devel-184
2021-04-07 03:16:39 +00:00
..
addns build: Consolidate --with-dnsupdate with --with-ads (which implied HAVE_KRB5) 2021-03-26 04:06:41 +00:00
afs s3:param: make "servicename" a substituted option 2019-11-27 10:25:37 +00:00
async_req lib: Use FIONREAD in wait_for_read_send/recv 2021-03-16 17:09:31 +00:00
audit_logging audit_logging tests: Fix timezone validation 2020-03-07 06:37:09 +00:00
compression lzxpress: avoid technically undefined shift 2020-08-31 22:31:13 +00:00
crypto lib:crypto: Add py binding for set_relax/strict fips mode 2020-10-29 14:19:36 +00:00
dbwrap dbwrap_rbt: support TDB_INSERT and TDB_MODIFY store flags 2020-06-10 19:08:40 +00:00
fuzzing oss-fuzz: Update build script to be compatible with rpm distros 2021-04-06 15:54:54 +00:00
krb5_wrap lib:krb5_wrap: Check the format string of krb5_warnx() 2021-02-01 21:50:32 +00:00
ldb ldb/attrib_handler casefold: simplify space dropping 2021-04-07 03:16:39 +00:00
ldb-samba ldb-samba: remove redundant negative check 2021-03-30 18:55:28 +00:00
messaging messaging: Fix receiving file descriptors 2021-03-19 08:18:26 +00:00
mscat lib:mscat: Add missing return check for error in dumpsmcat 2019-05-24 06:07:08 +00:00
param smb.conf: Remove "share backend" option 2021-03-26 03:04:39 +00:00
printer_driver printing: Align integer types 2021-04-01 19:32:36 +00:00
pthreadpool build: Do not build selftest binaries for builds without --enable-selftest 2019-11-22 11:48:59 +00:00
replace lib: Add "hex_byte()" to replace.h 2021-01-08 20:31:33 +00:00
smbconf waf: add library dependency for sendfile on Solaris 2019-02-17 13:33:15 +01:00
socket lib/socket: autodetect RSS using ETHTOOL_GRXRINGS 2020-05-07 14:44:40 +00:00
talloc Bug 9931: change pytalloc source to LGPL 2021-03-16 18:17:42 +00:00
tdb tdb: Fix CID 1471761 String not null terminated 2021-01-14 13:29:35 +00:00
tdb_wrap tdb_wrap: Use a struct initializer 2015-07-23 14:39:18 +02:00
tdr lib: Fix 1354521 Unchecked return value 2016-03-01 21:49:44 +01:00
tevent tevent: also use portable __has_attribute macro to check for "deprecated" attribute 2020-10-16 04:45:40 +00:00
texpect lib:texpect: Check the format string of err() 2021-02-01 21:50:32 +00:00
torture lib/torture: fix subunit names of nested suites 2020-07-07 10:30:40 +00:00
tsocket tsocket: Fix a few typos 2021-01-14 13:29:35 +00:00
util asn1: Remove unused function asn1_check_enumerated() 2021-04-01 17:50:49 +00:00
README various: Remove references to about to be deleted thirdparty/dnspython 2018-12-11 20:07:18 +01:00
wscript_build Remove 'external' python module support code - use the third_party directory instead. 2015-03-06 04:41:48 +01:00

README 

compression - Various compression algorithms (MSZIP, lzxpress)
popt - Command-line option parsing library
replace - Provides replacements for standard (POSIX, C99) functions 
          not provided by the host platform.
subunit - Utilities and bindings for working with the Subunit test result 
          reporting protocol.
talloc - Hierarchical pool based memory allocator 
tdb - Simple but fast key/value database library, supporting multiple writers
torture - Simple unit testing helper library