git.samba.org - samba.git/commit

author	Andrew Bartlett <abartlet@samba.org>
	Thu, 2 Mar 2023 04:24:15 +0000 (17:24 +1300)
committer	Jule Anger <janger@samba.org>
	Mon, 20 Mar 2023 09:03:45 +0000 (10:03 +0100)
commit	0313aa744f12b70f7446ca3d104a8b5f5052bade
tree	4e4105974bfd6e98765d899b497e0fdf50417771	tree
parent	f17179189c6364c2b0e202e8b839c7879a2b747a	commit \| diff

CVE-2023-0614 lib/ldb-samba Ensure ACLs are evaluated on SAMBA_LDAP_MATCH_RULE_TRANSITIVE_EVAL / LDAP_MATCHING_RULE_IN_CHAIN

Setting the LDB_HANDLE_FLAG_UNTRUSTED tells the acl_read module to operate on this request.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15270

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Joseph Sutton <josephsutton@catalyst.net.nz>

lib/ldb-samba/ldb_matching_rules.c

diff | blob | history

Samba Shared Repository

RSS Atom