samba-mirror/common at 68cb9a0e6c7991280154387527cd919e92d05c20 - samba-mirror - Gitea: Git with a cup of tea

IF YOU WOULD LIKE TO GET AN ACCOUNT, please write an email to Administrator. User accounts are meant only to access repo and report issues and/or generate pull requests. This is a purpose-specific Git hosting for BaseALT projects. Thank you for your understanding!

Только зарегистрированные пользователи имеют доступ к сервису! Для получения аккаунта, обратитесь к администратору.

sin/samba-mirror

mirror of https://github.com/samba-team/samba.git synced 2025-01-24 02:04:21 +03:00

History

Douglas Bagnall 24ddc1ca9c ldb/attrib_handler casefold: simplify space dropping

As seen in CVE-2021-20277, ldb_handler_fold() has been making mistakes
when collapsing spaces down to a single space.

This patch fixes the way it handles internal spaces (CVE-2021-20277
was about leading spaces), and involves a rewrite of the parsing loop.

The bug has a detailed description of the problem.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14656

Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>

Autobuild-User(master): Andrew Bartlett <abartlet@samba.org>
Autobuild-Date(master): Wed Apr  7 03:16:39 UTC 2021 on sn-devel-184

2021-04-07 03:16:39 +00:00

..

attrib_handlers.c

ldb/attrib_handler casefold: simplify space dropping

2021-04-07 03:16:39 +00:00

ldb_attributes.c

ldb_tdb: Read from @INDEXLIST or an override if we are using a GUID index

2017-09-22 21:20:23 +02:00

ldb_controls.c

ldb_controls: control_to_string avoids crash

2020-07-29 04:43:23 +00:00

ldb_debug.c

lib/ldb: Do not vasprintf() the tevent debug messages that will not be shown

2012-08-09 20:14:23 +10:00

ldb_dn.c

CVE-2020-27840 ldb_dn: avoid head corruption in ldb_dn_explode

2021-03-24 12:05:32 +00:00

ldb_ldif.c

ldb/ldb_ldif: add LDB_FLAG_FORCE_NO_BASE64_LDIF flag

2019-07-04 02:07:20 +00:00

ldb_match.c

ldb_match: remove redundant check

2021-03-10 08:42:33 +00:00

ldb_modules.c

ldb: improve comments for ldb_module_connect_backend()

2021-03-17 05:57:34 +00:00

ldb_msg.c

pyldb: catch potential overflow error in py_timestring

2021-03-01 03:50:35 +00:00

ldb_options.c

ldb: Add new internal helper function ldb_options_get()

2019-07-04 10:02:23 +00:00

ldb_pack.c

ldb: Call TALLOC_FREE(filtered_msg->elements) on ldb_filter_attrs() failure

2019-08-27 01:16:33 +00:00

ldb_parse.c

ldb: Use hex_byte() in ldb_binary_decode()

2021-01-08 20:31:33 +00:00

ldb_utf8.c

ldb: make ldb a top level library for Samba 4.0

2011-07-05 17:24:47 +10:00

ldb.c

CVE-2020-10730: lib ldb: Check if ldb_lock_backend_callback called twice

2020-07-02 09:01:41 +00:00

qsort.c

ldb: Fix overflow checks

2018-04-03 20:20:10 +02:00