search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
(parent: 22bd1bc) | patch
CVE-2022-2031 auth: Add ticket type field to auth_user_info_dc and auth_session_info
commitbe9945a4d8e774e8255dd9ae0ed29c9a953ce3ff
authorJoseph Sutton <josephsutton@catalyst.net.nz>
Fri, 10 Jun 2022 07:18:07 +0000 (10 19:18 +1200)
committerJule Anger <janger@samba.org>
Sun, 24 Jul 2022 09:55:51 +0000 (24 11:55 +0200)
treea89927585d648c549f0763ca555d0279bf13b1fctree | snapshot (tar.gz zip)
parent22bd1bc2d7308167ea316c6b48f130d378ab4c8bcommit | diff
CVE-2022-2031 auth: Add ticket type field to auth_user_info_dc and auth_session_info

This field may be used to convey whether we were provided with a TGT or
a non-TGT. We ensure both structures are zeroed out to avoid incorrect
results being produced by an uninitialised field.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15047
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15049

Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Reviewed-by: Andreas Schneider <asn@samba.org>
auth/auth_sam_reply.c diff | blob | blame | history
auth/auth_util.c diff | blob | blame | history
librpc/idl/auth.idl diff | blob | blame | history
source4/auth/ntlm/auth_developer.c diff | blob | blame | history
source4/auth/sam.c diff | blob | blame | history
source4/auth/session.c diff | blob | blame | history
source4/auth/system_session.c diff | blob | blame | history
Samba GIT mirror