| commit | 8300e8e8c5f94fd1873cd856bdd83f89cb771de1 | |
| author | Ralph Boehme <slow@samba.org> | |
| Thu, 15 Feb 2018 22:11:38 +0000 (15 23:11 +0100) | ||
| committer | Karolin Seeger <kseeger@samba.org> | |
| Mon, 12 Mar 2018 09:05:43 +0000 (12 10:05 +0100) | ||
| tree | dd5bfd186293cc42650e33197cf9bda2bbf87568 | treesnapshot (tar.gz zip) |
| parent | c1de637a37121d0e28d502d8b2ef507e7e8dd57f | commitdiff |
CVE-2018-1057: s4:dsdb/acl: changing dBCSPwd is only allowed with a control
This is not strictly needed to fig bug 13272, but it makes sense to also
fix this while fixing the overall ACL checking logic.
Bug: https://bugzilla.samba.org/show_bug.cgi?id=13272
Signed-off-by: Ralph Boehme <slow@samba.org>
Reviewed-by: Stefan Metzmacher <metze@samba.org>
This is not strictly needed to fig bug 13272, but it makes sense to also
fix this while fixing the overall ACL checking logic.
Bug: https://bugzilla.samba.org/show_bug.cgi?id=13272
Signed-off-by: Ralph Boehme <slow@samba.org>
Reviewed-by: Stefan Metzmacher <metze@samba.org>
| source4/dsdb/samdb/ldb_modules/acl.c | diffblobblamehistory |