sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-11 05:18:09 +03:00
Code
9881c3f9ab
samba-mirror/source4/dsdb
History
Andrew Bartlett 906aa7ddb8 CVE-2020-10700: dsdb: Do not permit the ASQ control for the GUID search in paged_results 
ASQ is a very strange control and a BASE search can return multiple results
that are NOT the requested DN, but the DNs pointed to by it!

Thanks to Andrei Popa <andrei.popa@next-gen.ro> for finding,
reporting and working with us to diagnose this issue!

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14331

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Gary Lockyer <gary@catalyst.net.nz>

Autobuild-User(master): Karolin Seeger <kseeger@samba.org>
Autobuild-Date(master): Mon May  4 10:14:28 UTC 2020 on sn-devel-184
2020-05-04 10:14:28 +00:00
..
common Remove unnecessary/incorrect talloc_steal() calls 2020-03-05 18:40:16 +00:00
dns s4-dns: Deprecate BIND9_FLATFILE and remove "rndc command" 2019-08-22 21:24:00 +00:00
kcc CVE-2019-19344 kcc dns scavenging: Fix use after free in dns_tombstone_records_zone 2020-01-21 11:38:38 +00:00
repl messaging4: Pass fds to messaging handlers 2019-09-18 20:10:24 +00:00
samdb CVE-2020-10700: dsdb: Do not permit the ASQ control for the GUID search in paged_results 2020-05-04 10:14:28 +00:00
schema source4/dsdb/schema/schema_description.c: typo fixes 2019-10-31 00:43:37 +00:00
tests/python CVE-2020-10700: dsdb: Add test for ASQ and ASQ in combination with paged_results 2020-05-04 08:19:41 +00:00
pydsdb.c py3: Remove #define PyInt_FromLong PyLong_FromLong 2020-03-23 19:12:43 +00:00
samdb.pc.in s4-pkgconfig: add @LIB_RPATH@ to our link flags 2010-12-08 12:46:00 +01:00
wscript_build build: Remove bld.gen_python_environments() 2019-03-21 04:06:14 +00:00