1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-22 13:34:15 +03:00
samba-mirror/lib/ldb/common
Joseph Sutton a74571b49f CVE-2023-0614 ldb: Filter on search base before redacting message
Redaction may be expensive if we end up needing to fetch a security
descriptor to verify rights to an attribute. Checking the search scope
is probably cheaper, so do that first.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15270

Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2023-03-20 10:03:38 +01:00
..
attrib_handlers.c ldb/attrib_handler casefold: simplify space dropping 2021-04-07 03:16:39 +00:00
ldb_attributes.c ldb_tdb: Read from @INDEXLIST or an override if we are using a GUID index 2017-09-22 21:20:23 +02:00
ldb_controls.c ldb_controls: control_to_string avoids crash 2020-07-29 04:43:23 +00:00
ldb_debug.c lib/ldb: Do not vasprintf() the tevent debug messages that will not be shown 2012-08-09 20:14:23 +10:00
ldb_dn.c CVE-2020-27840 ldb_dn: avoid head corruption in ldb_dn_explode 2021-03-24 12:05:32 +00:00
ldb_ldif.c ldb/ldb_ldif: add LDB_FLAG_FORCE_NO_BASE64_LDIF flag 2019-07-04 02:07:20 +00:00
ldb_match.c CVE-2023-0614 ldb: Filter on search base before redacting message 2023-03-20 10:03:38 +01:00
ldb_modules.c ldb: improve comments for ldb_module_connect_backend() 2021-03-17 05:57:34 +00:00
ldb_msg.c CVE-2023-0614 ldb: Add function to remove excess capacity from an ldb message 2023-03-20 10:03:38 +01:00
ldb_options.c ldb: Add new internal helper function ldb_options_get() 2019-07-04 10:02:23 +00:00
ldb_pack.c CVE-2023-0614 ldb: Make ldb_filter_attrs_in_place() work in place 2023-03-20 10:03:38 +01:00
ldb_parse.c CVE-2023-0614 ldb: Add ldb_parse_tree_get_attr() 2023-03-20 10:03:38 +01:00
ldb_utf8.c
ldb.c CVE-2020-10730: lib ldb: Check if ldb_lock_backend_callback called twice 2020-07-02 09:01:41 +00:00
qsort.c ldb: Fix overflow checks 2018-04-03 20:20:10 +02:00