sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-08 21:18:16 +03:00
Code
e1a321e8a4
samba-mirror/lib/ldb
History
Douglas Bagnall 24ddc1ca9c ldb/attrib_handler casefold: simplify space dropping 
As seen in CVE-2021-20277, ldb_handler_fold() has been making mistakes
when collapsing spaces down to a single space.

This patch fixes the way it handles internal spaces (CVE-2021-20277
was about leading spaces), and involves a rewrite of the parsing loop.

The bug has a detailed description of the problem.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14656

Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>

Autobuild-User(master): Andrew Bartlett <abartlet@samba.org>
Autobuild-Date(master): Wed Apr  7 03:16:39 UTC 2021 on sn-devel-184
2021-04-07 03:16:39 +00:00
..
ABI ldb: bump version to 2.4.0, in order to be used for Samba 4.15 2021-03-24 13:11:52 +00:00
common ldb/attrib_handler casefold: simplify space dropping 2021-04-07 03:16:39 +00:00
docs
examples
include ldb.h: remove undefined async_ctx function signatures 2021-03-17 05:57:34 +00:00
ldb_key_value ldb_kv_index: fix empty initializer compile warning 2020-11-10 06:53:43 +00:00
ldb_ldap ldb_ldap: Fix a memleak 2020-07-02 10:38:34 +00:00
ldb_ldb ldb: Add MDB support to ldb:// 2018-05-23 02:27:12 +02:00
ldb_map lib:ldb: Add missing break in switch statement 2021-02-01 21:50:32 +00:00
ldb_mdb Fix clang 9 parentheses-equality warnings 2020-05-08 09:31:31 +00:00
ldb_sqlite3 CVE-2018-1140 ldb: Check for ldb_dn_get_casefold() failure in ldb_sqlite 2018-08-14 13:57:15 +02:00
ldb_tdb lib ldb key value backends: Add nested txn support 2019-06-21 04:27:12 +00:00
man Spelling fixes s/overrided/overridden/ 2019-04-02 01:12:11 +00:00
modules ldb/mod/paged_searches: cope with NULL control data 2020-06-13 05:25:31 +00:00
nssldb
tests ldb/attrib_handler casefold: simplify space dropping 2021-04-07 03:16:39 +00:00
tools ldb: Avoid a cast (unsigned long long) in ldbmodify.c 2020-06-15 17:59:39 +00:00
web
_ldb_text.py ldb/tests/_ldb_text: remove unused imports 2018-10-25 21:45:55 +02:00
configure build: Move python detection back into waf (instead of in configure and Makefile) 2018-12-14 14:40:19 +01:00
Doxyfile
examples.dox
ldb.pc.in
mainpage.dox
Makefile Search for location of waf script 2019-02-26 10:39:24 +01:00
pyldb_util.c pyldb: rename pyldb_Dn_AsDn() to pyldb_Dn_AS_DN() 2019-07-10 04:32:13 +00:00
pyldb-util.pc.in lib/ldb: Enable use of a python3 pyldb-util system library 2017-03-10 07:31:10 +01:00
pyldb.c pyldb: catch potential overflow error in py_timestring 2021-03-01 03:50:35 +00:00
pyldb.h pyldb: rename pyldb_Dn_AsDn() to pyldb_Dn_AS_DN() 2019-07-10 04:32:13 +00:00
README_gcov.txt
wscript ldb: bump version to 2.4.0, in order to be used for Samba 4.15 2021-03-24 13:11:52 +00:00