git.samba.org / samba.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6e862bd) | patch
CVE-2018-14628: python:descriptor: add get_deletedobjects_descriptor()
authorStefan Metzmacher <metze@samba.org>
Fri, 29 Jan 2016 22:30:59 +0000 (23:30 +0100)
committerStefan Metzmacher <metze@samba.org>
Mon, 16 Oct 2023 14:39:33 +0000 (14:39 +0000)
commit3be190dcf7153e479383f7f3d29ddca43fe121b8
treef7c99b19862e5e0114061a021668978cd85596d8tree
parent6e862bd3690c041aa061ed8f7ee1d9207381674fcommit | diff
CVE-2018-14628: python:descriptor: add get_deletedobjects_descriptor()

samba-tool drs clone-dc-database was quite useful to find
the true value of nTSecurityDescriptor of the CN=Delete Objects
containers.

Only the auto inherited SACL is available via a ldap search.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=13595

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
python/samba/descriptor.py diff | blob | history
Samba Shared Repository