1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-22 13:34:15 +03:00
samba-mirror/libcli/auth
Gary Lockyer f467727db5 CVE-2020-10704: lib util asn1: Add ASN.1 max tree depth
Add maximum parse tree depth to the call to asn1_init, which will be
used to limit the depth of the ASN.1 parse tree.

Credit to OSS-Fuzz

REF: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20454
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14334

Signed-off-by: Gary Lockyer <gary@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
2020-05-04 02:59:31 +00:00
..
tests smbdes: remove old unused DES builtin-crypto 2019-12-10 00:30:31 +00:00
credentials.c smbdes: convert des_crypt112_16 to use gnutls 2019-12-10 00:30:31 +00:00
credentials.h s4:librpc/rpc/dcerpc_schannel: just append NETLOGON_NEG_RODC_PASSTHROUGH as rodc 2012-07-17 10:58:38 +02:00
libcli_auth.h
msrpc_parse.c libcli/auth: remove unused variable in msrpc_parse() 2016-07-06 19:07:16 +02:00
msrpc_parse.h libcli/auth/msrpc_parse.h: fix licence/copyright 2011-06-10 15:11:30 +02:00
netlogon_creds_cli.c smbdes: convert des_crypt112_16 to use gnutls 2019-12-10 00:30:31 +00:00
netlogon_creds_cli.h libcli/auth: add netlogon_creds_cli_LogonGetDomainInfo() 2019-09-20 01:14:43 +00:00
ntlm_check.c auth: Avoid casts in ntlm_check.c 2020-01-06 03:12:19 +00:00
ntlm_check.h param: Add new "disabled" value to "ntlm auth" to disable NTLM totally 2017-07-04 06:57:20 +02:00
pam_errors.c pam: map more NT password errors to PAM errors 2016-12-13 14:12:06 +01:00
pam_errors.h pam: share pam errors in a common location. 2011-02-08 14:05:36 +01:00
proto.h smbdes: remove old unused DES builtin-crypto 2019-12-10 00:30:31 +00:00
schannel_proto.h auth/gensec: move libcli/auth/schannel_sign.c into schannel.c 2014-01-07 00:27:11 +01:00
schannel_state_tdb.c lib: Fix an error path memleak in schannel_get_creds_state() 2019-11-14 22:26:30 +00:00
schannel_state.h rpc_server:netlogon Move from memcache to a tdb cache 2016-12-14 20:12:13 +01:00
schannel.h libcli/auth/schannel: make struct schannel_state private 2013-08-10 09:19:02 +02:00
session.c sess_crypt_blob can only crypt blobs whose size divides by 8 2019-12-10 00:30:31 +00:00
smbdes.c smbdes: remove old unused DES builtin-crypto 2019-12-10 00:30:31 +00:00
smbencrypt.c smbdes: convert E_P24() and SMBOWFencrypt to use gnutls 2019-12-10 00:30:30 +00:00
spnego_parse.c CVE-2020-10704: lib util asn1: Add ASN.1 max tree depth 2020-05-04 02:59:31 +00:00
spnego_proto.h libcli/auth: add more const to spnego_negTokenInit->mechTypes 2013-08-10 11:11:53 +02:00
spnego.h CVE-2016-2110: libcli/auth: add SPNEGO_REQUEST_MIC to enum spnego_negResult 2016-04-12 19:25:22 +02:00
wscript_build smbdes: add des_crypt56_gnutls() using DES-CBC with zeroed IV 2019-12-10 00:30:30 +00:00