git.samba.org - samba.git/commit

author	Ralph Boehme <slow@samba.org>
	Wed, 31 May 2023 14:26:14 +0000 (16:26 +0200)
committer	Jule Anger <janger@samba.org>
	Fri, 21 Jul 2023 12:05:35 +0000 (12:05 +0000)
commit	3b3c30e2acfb00d04c4013e32343bc277d5b1aa8
tree	08b848be11df90ffc71f687c9a87c23d051519af	tree
parent	38664163fcac985d87e4274d198568e0fe88595e	commit \| diff

CVE-2023-34967: CI: add a test for type checking of dalloc_value_for_key()

Sends a maliciously crafted packet where the value in a key/value style
dictionary for the "scope" key is a simple string object whereas the server
expects an array. As the server doesn't perform type validation on the value, it
crashes when trying to use the "simple" object as a "complex" one.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15341

Signed-off-by: Ralph Boehme <slow@samba.org>

source4/torture/rpc/mdssvc.c

diff | blob | history

Samba Shared Repository

RSS Atom