git.samba.org - dmulder/samba-autobuild/.git/commit

git.samba.org / dmulder / samba-autobuild / .git / commit

author	Gary Lockyer <gary@catalyst.net.nz>
	Tue, 7 Apr 2020 22:46:44 +0000 (10:46 +1200)
committer	Karolin Seeger <kseeger@samba.org>
	Tue, 21 Apr 2020 11:20:31 +0000 (13:20 +0200)
commit	40a58a973c0cfb7b259198c8f5df15ada39240ab
tree	18a373107f0a1629679e1902b0e68dc663fb4094	tree
parent	458b014a4d10e89f99cc0b54a815b50d6c817dce	commit \| diff

CVE-2020-10704 libcli ldap: Check search request lengths.

Check the search request lengths against the limits passed to
ldap_decode.

Credit to OSS-Fuzz

REF: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20454
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14334

Signed-off-by: Gary Lockyer <gary@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>

lib/util/asn1.c		diff \| blob \| history
lib/util/asn1.h		diff \| blob \| history
libcli/ldap/ldap_message.c		diff \| blob \| history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom