git.samba.org / metze / samba-autobuild-v4-18-test / .git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d57c4ea) | patch
CVE-2021-20251 auth4: Reread the user record if a bad password is noticed.
authorAndrew Bartlett <abartlet@samba.org>
Tue, 30 Mar 2021 04:57:10 +0000 (17:57 +1300)
committerJule Anger <janger@samba.org>
Mon, 19 Sep 2022 04:02:12 +0000 (04:02 +0000)
commit674dbeaca0710e4493d53b427903b2ef4ec59788
tree2b34c6946db8a7e9e26ceb0e49238a29e849afedtree
parentd57c4ea959927bf340c6326029db5a11941538a6commit | diff
CVE-2021-20251 auth4: Reread the user record if a bad password is noticed.

As is, this is pointless, as we need a transaction to make this
any less of a race, but this provides the steps towards that goal.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14611

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Reviewed-by: Andreas Schneider <asn@samba.org>
(cherry picked from commit 7b8e32efc336fb728e0c7e3dd6fbe2ed54122124)
source4/auth/sam.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.