git.samba.org - samba.git/commit

author	Andrew Bartlett <abartlet@samba.org>
	Mon, 30 Jul 2018 02:00:18 +0000 (14:00 +1200)
committer	Karolin Seeger <kseeger@samba.org>
	Sat, 11 Aug 2018 19:56:41 +0000 (21:56 +0200)
commit	49d940f8e335b8af6daf65ac6d3cce45db09ca8e
tree	aeac193acd80f1cd5cbfef5e4797223691bae2cf	tree
parent	011d25d5f653246770fa58b7dcff26740369c6ef	commit \| diff

CVE-2018-10918: cracknames: Fix DoS (NULL pointer de-ref) when not servicePrincipalName is set on a user

This regression was introduced in Samba 4.7 by bug 12842 and in
master git commit eb2e77970e41c1cb62c041877565e939c78ff52d.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=13552

CVE-2018-10918: Denial of Service Attack on AD DC DRSUAPI server.

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Gary Lockyer <gary@catalyst.net.nz>

source4/dsdb/samdb/cracknames.c		diff \| blob \| history
source4/torture/drs/python/cracknames.py		diff \| blob \| history

Samba Shared Repository

RSS Atom