| commit | 42eb5fee22a482bc727dfdc1ad3ba1b123e4239a | |
| author | Andrew Bartlett <abartlet@samba.org> | |
| Mon, 1 Nov 2021 04:19:29 +0000 (1 17:19 +1300) | ||
| committer | Jule Anger <janger@samba.org> | |
| Tue, 9 Nov 2021 19:45:33 +0000 (9 19:45 +0000) | ||
| tree | caa4cacda05248e07efb181b62f52eb286419c31 | treesnapshot (tar.gz zip) |
| parent | 8da6d0bf6f575166126dc3196155ca3fc9004819 | commitdiff |
CVE-2020-25722 Check all elements in acl_check_spn() not just the first one
Thankfully we are aleady in a loop over all the message elements in
acl_modify() so this is an easy and safe change to make.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14876
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Thankfully we are aleady in a loop over all the message elements in
acl_modify() so this is an easy and safe change to make.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14876
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Joseph Sutton <josephsutton@catalyst.net.nz>
| selftest/knownfail.d/acl-spn | [deleted file] | blobblamehistory |
| source4/dsdb/samdb/ldb_modules/acl.c | diffblobblamehistory |