git.samba.org / samba.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9eb8340) | patch
CVE-2018-10919 tests: test ldap searches for non-existent attributes.
authorGary Lockyer <gary@catalyst.net.nz>
Fri, 3 Aug 2018 03:51:28 +0000 (15:51 +1200)
committerKarolin Seeger <kseeger@samba.org>
Tue, 14 Aug 2018 11:57:16 +0000 (13:57 +0200)
commit563e454e8c55e94a9509c935468b636fe0d8eb97
tree66a93074e6a4fc0b6d66c8dbe4f9ac8ade31ab16tree
parent9eb8340e328757b1a1c6238f47d2a2404f7fbe38commit | diff
CVE-2018-10919 tests: test ldap searches for non-existent attributes.

It is perfectly legal to search LDAP for an attribute that is not part
of the schema.  That part of the query should simply not match.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=13434

Signed-off-by: Gary Lockyer <gary@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
source4/dsdb/tests/python/ldap.py diff | blob | history
Samba Shared Repository