| commit | 87aa836153e6fb48ea05d3fd98b8e05c527daf72 | |
| author | Andrew Bartlett <abartlet@samba.org> | |
| Mon, 30 Jul 2018 02:00:18 +0000 (30 14:00 +1200) | ||
| committer | Karolin Seeger <kseeger@samba.org> | |
| Sat, 11 Aug 2018 06:16:01 +0000 (11 08:16 +0200) | ||
| tree | 237e6e037e4ad9dc0a7f6ff84d7706bbee8ec9ef | treesnapshot (tar.gz zip) |
| parent | 5923c3ccfc11462b841db9e015a33e5f96459e47 | commitdiff |
CVE-2018-10918: cracknames: Fix DoS (NULL pointer de-ref) when not servicePrincipalName is set on a user
This regression was introduced in Samba 4.7 by bug 12842 and in
master git commit eb2e77970e41c1cb62c041877565e939c78ff52d.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=13552
CVE-2018-10918: Denial of Service Attack on AD DC DRSUAPI server.
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Gary Lockyer <gary@catalyst.net.nz>
This regression was introduced in Samba 4.7 by bug 12842 and in
master git commit eb2e77970e41c1cb62c041877565e939c78ff52d.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=13552
CVE-2018-10918: Denial of Service Attack on AD DC DRSUAPI server.
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Gary Lockyer <gary@catalyst.net.nz>
| source4/dsdb/samdb/cracknames.c | diffblobblamehistory | |
| source4/torture/drs/python/cracknames.py | diffblobblamehistory |