git.samba.org / dmulder / samba-autobuild / .git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e5c4b58) | patch
CVE-2020-10704: smb.conf: Add max ldap request sizes
authorGary Lockyer <gary@catalyst.net.nz>
Mon, 6 Apr 2020 21:09:01 +0000 (09:09 +1200)
committerKarolin Seeger <kseeger@samba.org>
Tue, 21 Apr 2020 11:20:31 +0000 (13:20 +0200)
commitfde648202947e96deb911ac1f6941455fc272468
tree6af22da28c98d8f6ecfbf1ce178a4f622471233ctree
parente5c4b58314e9e8dba63b3078061619ae8b5d4ad3commit | diff
CVE-2020-10704: smb.conf: Add max ldap request sizes

Add two new smb.conf parameters to control the maximum permitted ldap
request size.

Adds:
   ldap max anonymous request size       default 250Kb
   ldap max authenticated request size   default 16Mb

Credit to OSS-Fuzz

REF: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20454
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14334

Signed-off-by: Gary Lockyer <gary@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
docs-xml/smbdotconf/ldap/ldapmaxanonrequest.xml [new file with mode: 0644] blob
docs-xml/smbdotconf/ldap/ldapmaxauthrequest.xml [new file with mode: 0644] blob
lib/param/loadparm.c diff | blob | history
source3/param/loadparm.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.