| commit | 10b6890d26b3c7a829a9e9a05ad1d1ff54daeca9 | |
| author | Ralph Boehme <slow@samba.org> | |
| Wed, 31 May 2023 13:34:26 +0000 (31 15:34 +0200) | ||
| committer | Jule Anger <janger@samba.org> | |
| Fri, 21 Jul 2023 12:05:35 +0000 (21 12:05 +0000) | ||
| tree | 16ac05940de23575a24048b97318270bd22a5c50 | treesnapshot (tar.gz zip) |
| parent | e067c523b17951a93b6daafd349e9371f8f81e56 | commitdiff |
CVE-2023-34966: CI: test for sl_unpack_loop()
Send a maliciously crafted packet where a nil type has a subcount of 0. This
triggers an endless loop in mdssvc sl_unpack_loop().
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15340
Signed-off-by: Ralph Boehme <slow@samba.org>
Send a maliciously crafted packet where a nil type has a subcount of 0. This
triggers an endless loop in mdssvc sl_unpack_loop().
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15340
Signed-off-by: Ralph Boehme <slow@samba.org>
| source4/torture/rpc/mdssvc.c | diffblobblamehistory |