git.samba.org / slow / samba-autobuild / .git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a75be03) | patch
CVE-2023-34968: mdscli: use correct TALLOC memory context when allocating spotlight_blob
authorRalph Boehme <slow@samba.org>
Mon, 19 Jun 2023 15:14:38 +0000 (17:14 +0200)
committerJule Anger <janger@samba.org>
Fri, 14 Jul 2023 13:12:34 +0000 (15:12 +0200)
commit921a99259090eb33937dabf62717b77fbd95885b
tree8bec3c661e6334880199b0b7ba36ef99ff2419e0tree
parenta75be03b23c0c38bf525efb54c393befccdf3d00commit | diff
CVE-2023-34968: mdscli: use correct TALLOC memory context when allocating spotlight_blob

d is talloc_free()d at the end of the functions and the buffer was later used
after beeing freed in the DCERPC layer when sending the packet.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15388

Signed-off-by: Ralph Boehme <slow@samba.org>
Reviewed-by: Stefan Metzmacher <metze@samba.org>
source3/rpc_client/cli_mdssvc_util.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.