| commit | 6e5e5c7f64eef80e10473e860a1662ce66491e8e | |
| author | Ralph Boehme <slow@samba.org> | |
| Wed, 31 May 2023 13:34:26 +0000 (31 15:34 +0200) | ||
| committer | Jule Anger <janger@samba.org> | |
| Fri, 14 Jul 2023 13:14:54 +0000 (14 15:14 +0200) | ||
| tree | f058e86386a2c7dac0ad3a2cabf8faf8c1035382 | treesnapshot (tar.gz zip) |
| parent | 53838682570135b753fa622dfcde111528563c2d | commitdiff |
CVE-2023-34966: CI: test for sl_unpack_loop()
Send a maliciously crafted packet where a nil type has a subcount of 0. This
triggers an endless loop in mdssvc sl_unpack_loop().
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15340
Signed-off-by: Ralph Boehme <slow@samba.org>
Send a maliciously crafted packet where a nil type has a subcount of 0. This
triggers an endless loop in mdssvc sl_unpack_loop().
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15340
Signed-off-by: Ralph Boehme <slow@samba.org>
| source4/torture/rpc/mdssvc.c | diffblobblamehistory |