git.samba.org / samba.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: cb6f3e2) | patch
CVE-2023-34967: CI: add a test for type checking of dalloc_value_for_key()
authorRalph Boehme <slow@samba.org>
Wed, 31 May 2023 14:26:14 +0000 (16:26 +0200)
committerJule Anger <janger@samba.org>
Fri, 14 Jul 2023 13:16:26 +0000 (15:16 +0200)
commit92d014bc44b32478aa597f38bf11687f1fc95ff1
treea0050a50262620690362b90e99bd47f55bc6032ctree
parentcb6f3e2202473eeccf81e34ebcdb4bc4f726548acommit | diff
CVE-2023-34967: CI: add a test for type checking of dalloc_value_for_key()

Sends a maliciously crafted packet where the value in a key/value style
dictionary for the "scope" key is a simple string object whereas the server
expects an array. As the server doesn't perform type validation on the value, it
crashes when trying to use the "simple" object as a "complex" one.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15341

Signed-off-by: Ralph Boehme <slow@samba.org>
source4/torture/rpc/mdssvc.c diff | blob | history
Samba Shared Repository