samba-mirror

mirror of https://github.com/samba-team/samba.git synced 2025-01-18 06:04:06 +03:00

History

Stefan Metzmacher a1136ed2e0 CVE-2021-20251: s4:auth: fix use after free in authsam_logon_success_accounting()

This fixes a use after free problem introduced by
commit 7b8e32efc336fb728e0c7e3dd6fbe2ed54122124,
which has msg = current; which means the lifetime
of the 'msg' memory is no longer in the scope of th
caller.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14611
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15253

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
(cherry picked from commit 1414269dccfd7cb831889cc92df35920b034457c)

Autobuild-User(v4-16-test): Stefan Metzmacher <metze@samba.org>
Autobuild-Date(v4-16-test): Mon Dec 12 15:52:22 UTC 2022 on sn-devel-184

2022-12-12 15:52:22 +00:00

gensec

CVE-2022-2031 gensec_krb5: Add helper function to check if client sent an initial ticket

2022-07-24 09:23:55 +02:00

kerberos

CVE-2022-2031 s4:auth: Use PAC to determine whether ticket is a TGT

2022-07-24 09:23:56 +02:00

ntlm

CVE-2021-20251: s4:auth: fix use after free in authsam_logon_success_accounting()

2022-12-12 15:52:22 +00:00

tests

CVE-2021-20251: s4:auth: fix use after free in authsam_logon_success_accounting()