sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2024-12-23 17:34:34 +03:00
Code
3bc7acc626
samba-mirror/python/samba
History
Gary Lockyer ae6927e4f0 librpc ndr: Heap-buffer-overflow in lzxpress_decompress 
Reproducer for oss-fuzz Issue 20083

Project: samba
Fuzzing Engine: libFuzzer
Fuzz Target: fuzz_ndr_drsuapi_TYPE_OUT
Job Type: libfuzzer_asan_samba
Platform Id: linux

Crash Type: Heap-buffer-overflow READ 1
Crash Address: 0x6040000002fd
Crash State:
  lzxpress_decompress
    ndr_pull_compression_xpress_chunk
      ndr_pull_compression_start

Sanitizer: address (ASAN)

Recommended Security Severity: Medium

Credit to OSS-Fuzz

REF: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20083
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14236

Signed-off-by: Gary Lockyer <gary@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2020-02-07 08:53:40 +00:00
..
emulate traffic.py: avoid inefficient string concatenations 2019-09-24 12:22:44 +00:00
gp_parse gp_inf: Read/write files with a UTF-16LE BOM in GptTmpl.inf 2019-07-19 02:20:47 +00:00
kcc samba_kcc: avoid ValueError when local connections are less than 2 2019-12-18 11:37:53 +00:00
netcmd samba-tool group addmembers: avoid python traceback on member add failure 2020-01-21 14:38:47 +00:00
provision pysmbd: make "session_info" arg to py_smbd_get_nt_acl() mandatory 2019-12-20 11:41:42 +00:00
samba3 python/samba3: import passdb in the manner it is used 2018-11-01 05:08:14 +01:00
subunit subunit/run.py: change shebang to python3 2019-03-07 13:03:56 +00:00
tests librpc ndr: Heap-buffer-overflow in lzxpress_decompress 2020-02-07 08:53:40 +00:00
__init__.py python/samba: ignore encoding errors while reading files 2019-04-03 11:33:38 +00:00
auth_util.py python: move system_session_unix to new auth_util.py 2019-12-20 11:41:41 +00:00
colour.py python/colour: add colourizing and switch functions 2018-05-31 01:57:17 +02:00
common.py python: avoid useless work in dsdb_Dn.__cmp__ 2018-11-01 05:08:12 +01:00
compat.py python/samba: fix default params for PY3 ConfigParser 2018-12-10 10:38:22 +01:00
dbchecker.py python/samba/dbchecker.py: typo fixes 2019-10-31 00:43:36 +00:00
descriptor.py PEP8: fix E302: expected 2 blank lines, found 1 2018-08-24 07:49:29 +02:00
dnsserver.py PEP8: fix E302: expected 2 blank lines, found 1 2018-08-24 07:49:29 +02:00
domain_update.py python/domain_update: remove unused imports 2018-10-25 21:45:53 +02:00
drs_utils.py drs_utils: Avoid invalid dereference of v8 requests 2018-11-06 07:15:33 +01:00
forest_update.py python/forest_update: remove unused imports 2018-10-25 21:45:53 +02:00
getopt.py python getopt: Add bytes option type 2019-07-02 02:23:08 +00:00
gp_ext_loader.py python/gp_ext_loader: remove unused imports 2018-10-25 21:45:53 +02:00
gp_sec_ext.py python/samba: PY3 port gpo.apply smbtorture test 2018-12-10 10:38:22 +01:00
gpclass.py python/gpclass: Convert gpclass to use s3 SMB Python bindings 2019-01-17 01:40:29 +01:00
graph.py py/graph: use 2.6 compatible check for set membership 2019-03-20 06:36:05 +00:00
hostconfig.py PEP8: fix E302: expected 2 blank lines, found 1 2018-08-24 07:49:29 +02:00
idmap.py PEP8: fix E302: expected 2 blank lines, found 1 2018-08-24 07:49:29 +02:00
join.py join: Use a specific attribute order for the DsAddEntry nTDSDSA object 2019-07-24 04:18:21 +00:00
logger.py logger: use color automatically for a tty 2018-11-21 10:46:20 +01:00
mdb_util.py mdb_util: Better error message if lmdb-utils not installed 2018-11-09 21:07:47 +01:00
ms_display_specifiers.py python/samba: port open to io.open for PY2/PY3 compat 2018-09-03 03:22:20 +02:00
ms_forest_updates_markdown.py python/samba: PY3 port samba4.blackbox.functionalprep 2018-10-23 05:50:28 +02:00
ms_schema_markdown.py PEP8: fix E305: expected 2 blank lines after class or function definition, found 1 2018-08-24 07:49:30 +02:00
ms_schema.py python/samba: port open to io.open for PY2/PY3 compat 2018-09-03 03:22:20 +02:00
ndr.py PEP8: fix E302: expected 2 blank lines, found 1 2018-08-24 07:49:29 +02:00
ntacls.py pysmbd: add "session_info" arg tp py_smbd_create_file() 2019-12-20 11:41:42 +00:00
remove_dc.py python/remove_dc: fix Exception construction 2018-11-01 05:08:13 +01:00
samdb.py samba-tool group addmembers: add --member-base-dn option for group member search 2020-01-21 14:38:47 +00:00
schema.py schema.py: avoid inefficient string concatenations 2019-09-24 12:22:44 +00:00
sd_utils.py PEP8: fix E231: missing whitespace after ',' 2018-08-24 07:49:28 +02:00
sites.py PEP8: fix E128: continuation line under-indented for visual indent 2018-08-24 07:49:27 +02:00
subnets.py python/subnets: use the correct variable name 2018-11-01 05:08:11 +01:00
tdb_util.py PEP8: fix E302: expected 2 blank lines, found 1 2018-08-24 07:49:29 +02:00
upgrade.py classicupgrade: fix a a bytes-like object is required, not 'str' error 2019-09-23 12:58:20 +00:00
upgradehelpers.py python/samba/upgradehelpers.py: typo fixes 2019-10-31 00:43:37 +00:00
uptodateness.py python/uptodateness: cope with unknown invocation ID 2019-01-19 19:21:19 +01:00
xattr.py python/xattr: remove unused variable 2018-11-01 05:08:14 +01:00