1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-22 13:34:15 +03:00
samba-mirror/source3
Ralph Boehme 3636b54616 CVE-2023-34968: mdscli: use correct TALLOC memory context when allocating spotlight_blob
d is talloc_free()d at the end of the functions and the buffer was later used
after beeing freed in the DCERPC layer when sending the packet.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15388

Signed-off-by: Ralph Boehme <slow@samba.org>
Reviewed-by: Stefan Metzmacher <metze@samba.org>
2023-07-14 15:16:29 +02:00
..
auth s3:auth: call wbcFreeMemory(info) in auth3_generate_session_info_pac() 2023-01-23 10:01:59 +00:00
build
client s3:client: Fix a use-after-free issue in smbclient 2023-01-03 19:19:57 +00:00
exports
groupdb lib: relicense smb_strtoul(l) under LGPLv3 2020-08-03 22:21:02 +00:00
include smbd: add and use vfs_fget_dos_attributes() 2022-09-06 07:54:13 +00:00
intl
lib CVE-2023-34968: lib: Move subdir_of() to source3/lib/util_path.c 2023-07-14 15:16:29 +02:00
libads CVE-2022-37966 s3:libads: no longer reference des encryption types 2022-12-14 10:28:16 +00:00
libgpo/gpext
libnet CVE-2022-37966 s3:libnet: no longer reference des encryption types 2022-12-14 10:28:16 +00:00
librpc smbXsrv_client: notify a different node to drop a connection by client guid. 2022-10-18 08:34:17 +00:00
libsmb s3: libsmbclient: Fix smbc_getxattr() to return 0 on success. 2023-01-16 09:40:17 +00:00
locale pam_winbind/ro.po: fix error from previous patch merge 2020-10-29 20:49:16 +00:00
locking s3: smbd: Move implicit call to lp_posix_cifsu_locktype() out of init_strict_lock_struct(). 2022-01-06 15:11:38 +00:00
modules s3: smbd: Always use metadata_fsp() when processing fsctls. 2023-01-23 10:01:59 +00:00
nmbd source3: move lib/substitute.c functions out of proto.h 2021-11-11 13:49:32 +00:00
param CVE-2023-0922 set default ldap client sasl wrapping to seal 2023-03-20 10:04:44 +01:00
passdb CVE-2022-32746 ldb: Make use of functions for appending to an ldb_message 2022-07-24 09:20:21 +02:00
printing s3:printing: Do not clear the printer-list.tdb 2022-07-11 10:27:17 +00:00
profile profile3: remove an unused include 2022-01-18 20:22:38 +00:00
registry CVE-2020-25717: Add FreeIPA domain controller role 2021-11-09 19:45:33 +00:00
rpc_client CVE-2023-34968: mdscli: use correct TALLOC memory context when allocating spotlight_blob 2023-07-14 15:16:29 +02:00
rpc_server CVE-2023-34968: mdssvc: add missing "kMDSStoreMetaScopes" dict key in slrpc_fetch_properties() 2023-07-14 15:16:29 +02:00
rpcclient s3/rpcclient: Duplicate string returned from poptGetArg 2022-10-19 08:39:17 +00:00
script selftest: add samba3.blackbox.registry_share 2023-01-13 09:27:09 +00:00
selftest s3: smbd: Add test to show smbd crashes when doing an FSCTL on a named stream handle. 2023-01-23 10:01:59 +00:00
services s3:services: Disable rcinit-based service control code 2021-12-10 14:02:30 +00:00
smbd s3: smbd: In synthetic_pathref() change DBG_ERR -> DBG_NOTICE to avoid spamming the logs. 2023-01-16 09:40:17 +00:00
torture smbd: use metadata_fsp() with SMB_VFS_FSET_NT_ACL() 2022-09-06 07:54:13 +00:00
utils CVE-2022-2127: ntlm_auth: cap lanman response length value 2023-07-14 15:16:16 +02:00
web
winbindd CVE-2022-2127: winbindd: Fix WINBINDD_PAM_AUTH_CRAP length checks 2023-07-14 15:16:16 +02:00
.clang_complete
.dmallocrc
.indent.pro
Doxyfile
mainpage.dox
smbadduser.in
wscript Revert "s3:smbd: Remove NIS support" 2022-06-12 09:19:16 +00:00
wscript_build s3:waf: Fix version number of public libsmbconf 2022-06-27 08:25:10 +00:00
wscript_configure_system_ncurses