search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
(parent: 3c93b57) | patch
CVE-2014-8143:dsdb-samldb: Check for extended access rights before we allow changes...
commit5cc1c0ec403358d08e208a38feae11631510ab72
authorAndrew Bartlett <abartlet@samba.org>
Thu, 4 Dec 2014 04:23:29 +0000 (4 17:23 +1300)
committerKarolin Seeger <kseeger@samba.org>
Mon, 12 Jan 2015 20:17:01 +0000 (12 21:17 +0100)
tree6201ac1e549dc9631c4ffeda31ffa72ef05f9d55tree | snapshot (tar.gz zip)
parent3c93b5772ef002569810b01c39faac8b34168f05commit | diff
CVE-2014-8143:dsdb-samldb: Check for extended access rights before we allow changes to userAccountControl

This requires an additional control to be used in the
LSA server to add domain trust account objects.

Bug: https://bugzilla.samba.org/show_bug.cgi?id=10993

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Stefan Metzmacher <metze@samba.org>
librpc/idl/security.idl diff | blob | blame | history
source4/dsdb/samdb/ldb_modules/samldb.c diff | blob | blame | history
source4/dsdb/samdb/samdb.h diff | blob | blame | history
source4/rpc_server/lsa/dcesrv_lsa.c diff | blob | blame | history
source4/setup/schema_samba4.ldif diff | blob | blame | history
Samba GIT mirror