| commit | 24e621b4dde15a26f4fbf1a2e2bc7ecdb77d26a4 | |
| author | Andrew Bartlett <abartlet@samba.org> | |
| Wed, 11 Mar 2020 03:41:34 +0000 (11 16:41 +1300) | ||
| committer | Karolin Seeger <kseeger@samba.org> | |
| Tue, 21 Apr 2020 11:20:31 +0000 (21 13:20 +0200) | ||
| tree | bdbb3bfde2e96483425f52e0717df396c93efbea | treesnapshot (tar.gz zip) |
| parent | ffd2779db53995c0f759539fe2d9cf425f7464c8 | commitdiff |
CVE-2020-10700: ldb: Always use ldb_next_request() in ASQ module
We want to keep going down the module stack, and not start from the top again.
ASQ is above the ACL modules, but below paged_results and we do not wish to
re-trigger that work.
Thanks to Andrei Popa <andrei.popa@next-gen.ro> for finding,
reporting and working with us to diagnose this issue!
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14331
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Gary Lockyer <gary@catalyst.net.nz>
We want to keep going down the module stack, and not start from the top again.
ASQ is above the ACL modules, but below paged_results and we do not wish to
re-trigger that work.
Thanks to Andrei Popa <andrei.popa@next-gen.ro> for finding,
reporting and working with us to diagnose this issue!
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14331
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Gary Lockyer <gary@catalyst.net.nz>
| lib/ldb/modules/asq.c | diffblobblamehistory |