sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2024-12-25 23:21:54 +03:00
Code
5603d26770
samba-mirror/lib
History
Gary Lockyer bac809348a CVE-2020-10704 libcli ldap: Check search request lengths. 
Check the search request lengths against the limits passed to
ldap_decode.

Credit to OSS-Fuzz

REF: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20454
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14334

Signed-off-by: Gary Lockyer <gary@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>

Autobuild-User(master): Gary Lockyer <gary@samba.org>
Autobuild-Date(master): Mon May  4 04:40:10 UTC 2020 on sn-devel-184
2020-05-04 04:40:10 +00:00
..
addns lib/addns: clang: Fix 'Assigned value is garbage or undefined' 2019-07-24 21:33:21 +00:00
afs s3:param: make "servicename" a substituted option 2019-11-27 10:25:37 +00:00
async_req lib: Fix a valgrind error 2020-04-23 21:53:38 +00:00
audit_logging audit_logging tests: Fix timezone validation 2020-03-07 06:37:09 +00:00
compression lib:compression: Fix undefined behavior in lzxpress 2018-11-22 22:13:27 +01:00
crypto lib:crypto: Add samba_gnutls_weak_crypto() 2020-03-19 20:46:41 +00:00
dbwrap dbwrap: Don't set rec->value in dbwrap_do_locked() 2019-11-22 23:57:46 +00:00
fuzzing CVE-2020-10704: libcli ldap_message: Add search size limits to ldap_decode 2020-05-04 02:59:32 +00:00
krb5_wrap krb5_wrap: map KRB5_REALM_UNKNOWN to NT_STATUS_NO_SUCH_DOMAIN 2020-02-10 17:59:34 +00:00
ldb lib ldb: lmdb init var before calling mdb_reader_check 2020-04-07 12:29:00 +00:00
ldb-samba pytests: heed assertEquals deprecation warning en-masse 2020-02-07 10:37:37 +00:00
mscat lib:mscat: Add missing return check for error in dumpsmcat 2019-05-24 06:07:08 +00:00
param CVE-2020-10704: libcli ldap_message: Add search size limits to ldap_decode 2020-05-04 02:59:32 +00:00
printer_driver lib:printer_driver: Retrieve Class value 2019-01-28 15:44:18 +01:00
pthreadpool build: Do not build selftest binaries for builds without --enable-selftest 2019-11-22 11:48:59 +00:00
replace lib: Add macro ARRAY_DEL_ELEMENT() 2020-03-26 14:43:31 +00:00
smbconf waf: add library dependency for sendfile on Solaris 2019-02-17 13:33:15 +01:00
socket lib:socket: If returning early, set ifaces 2018-10-28 00:35:34 +02:00
talloc talloc: Release talloc 2.3.1 2019-11-18 10:11:41 +00:00
tdb tdbtorture: Use ARRAY_DEL_ELEMENT() 2020-03-26 16:22:00 +00:00
tdb_wrap
tdr
tevent py3: Remove #define PyInt_FromLong PyLong_FromLong 2020-03-23 19:12:43 +00:00
texpect texpect: Avoid duplicate sys_write() 2020-01-15 21:25:34 +00:00
torture lib/torture: protect torture_assert[_goto]() with a do { } while(0) block 2019-09-10 17:38:40 +00:00
tsocket Rename macro argument s_addr due to it already being defined 2020-02-28 03:08:45 +00:00
util CVE-2020-10704 libcli ldap: Check search request lengths. 2020-05-04 04:40:10 +00:00
README various: Remove references to about to be deleted thirdparty/dnspython 2018-12-11 20:07:18 +01:00
wscript_build

README 

compression - Various compression algorithms (MSZIP, lzxpress)
popt - Command-line option parsing library
replace - Provides replacements for standard (POSIX, C99) functions 
          not provided by the host platform.
subunit - Utilities and bindings for working with the Subunit test result 
          reporting protocol.
talloc - Hierarchical pool based memory allocator 
tdb - Simple but fast key/value database library, supporting multiple writers
torture - Simple unit testing helper library