git.samba.org / samba.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 47a0c16) | patch
CVE-2023-34968: mdscli: use correct TALLOC memory context when allocating spotlight_blob
authorRalph Boehme <slow@samba.org>
Mon, 19 Jun 2023 15:14:38 +0000 (17:14 +0200)
committerJule Anger <janger@samba.org>
Fri, 14 Jul 2023 13:15:00 +0000 (15:15 +0200)
commit56a21b3bc8fb24416ead9061f9305c8122bc7f86
tree5838ddc0afa0708594b99b1f1b240eda16491424tree
parent47a0c1681dd1e7ec407679793966ec8bdc08a24ecommit | diff
CVE-2023-34968: mdscli: use correct TALLOC memory context when allocating spotlight_blob

d is talloc_free()d at the end of the functions and the buffer was later used
after beeing freed in the DCERPC layer when sending the packet.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15388

Signed-off-by: Ralph Boehme <slow@samba.org>
Reviewed-by: Stefan Metzmacher <metze@samba.org>
source3/rpc_client/cli_mdssvc_util.c diff | blob | history
Samba Shared Repository