| commit | b824444544f8b970ed93c914cb96de3b54c6e282 | |
| author | Andrew Bartlett <abartlet@samba.org> | |
| Wed, 11 Mar 2020 03:41:34 +0000 (11 16:41 +1300) | ||
| committer | Karolin Seeger <kseeger@samba.org> | |
| Wed, 22 Apr 2020 10:50:42 +0000 (22 12:50 +0200) | ||
| tree | 4718cf4c80e3209aa0b59f7f47b71e8cc7003eb7 | treesnapshot (tar.gz zip) |
| parent | 8e597aa1b9b1fa3483250907579ec4a9dea3c4c9 | commitdiff |
CVE-2020-10700: ldb: Always use ldb_next_request() in ASQ module
We want to keep going down the module stack, and not start from the top again.
ASQ is above the ACL modules, but below paged_results and we do not wish to
re-trigger that work.
Thanks to Andrei Popa <andrei.popa@next-gen.ro> for finding,
reporting and working with us to diagnose this issue!
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14331
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Gary Lockyer <gary@catalyst.net.nz>
We want to keep going down the module stack, and not start from the top again.
ASQ is above the ACL modules, but below paged_results and we do not wish to
re-trigger that work.
Thanks to Andrei Popa <andrei.popa@next-gen.ro> for finding,
reporting and working with us to diagnose this issue!
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14331
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Gary Lockyer <gary@catalyst.net.nz>
| lib/ldb/modules/asq.c | diffblobblamehistory |