repo.or.cz
/
Samba.git
/
search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
log
|
graphiclog1
|
graphiclog2
|
commit
|
commitdiff
|
tree
|
refs
|
edit
|
fork
first
·
prev
·
next
CVE-2023-0614 s4:dsdb: Use talloc_get_type_abort() more consistently
2023-03-20
Joseph Sutto
n
CVE-2023-0
6
14 s4:ds
d
b: Use tallo
c
_get_t
y
pe_
a
bort()
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2023-03-20
Josep
h
Sutto
n
CVE-2023-0614 libcli/security: Make some parameters
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-12-14
J
oseph
S
u
t
ton
C
V
E-2022-3
7
9
66 kdc: Assume trust objects su
p
port AES
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-12-14
Josep
h
Sutton
CVE-20
2
2-37966 selftest: Run
S
4U tests a
g
ainst FL2003 DC
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-12-14
J
ose
p
h S
u
tton
CVE-2022-37966 se
l
ftest: Add tests fo
r
K
e
r
beros sess
i
on
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-12-14
Joseph Su
t
ton
CVE-2022-37966 te
s
ts/krb
5
: T
e
st diff
e
rent preauth etypes
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-12-14
Joseph Sutton
C
VE-2022-37966 s
a
m
b
a-tool: D
e
c
lare explicit
l
y RC
4
support
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-12-14
Joseph S
u
tton
CVE-2022-3
7
966 samba-t
o
ol
:
Fix
'
domain trust cr
e
ate
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-12-14
Jose
p
h
Sutton
CV
E
-2022-37
9
66 thir
d
_party/he
i
mdal:
F
ix error mes
s
age
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-12-14
J
oseph
Sutt
o
n
CVE-2022-3796
6
param: Add support
f
or new option "kdc
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-12-14
Joseph Sutt
o
n
CVE-2022-37
9
67 Add n
e
w PAC chec
k
sum
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-12-14
Joseph
S
utton
CVE-202
2
-37966
t
e
s
t
s/krb5: Add a test requesting
t
ickets
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-12-14
Jose
p
h Sutton
CVE-2022-3796
6
tests/krb5
:
Add
'ety
p
e
s
' para
m
eter to
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-12-14
Joseph Sutton
CVE-2022-
3
7
966 tes
t
s/kr
b
5: Split out
_tgs_req() into
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-12-14
Josep
h
Sutton
CVE-2022-37966 tes
t
s/krb5: Add
test
r
eq
u
esting a TGT
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-11-13
Joseph Sutto
n
CVE-2022-42898 third_
p
arty/heimdal: PAC p
a
rs
e
in
t
eger
.
.
.
Joseph Sutton
<josephsutton@catalyst.net.nz>.
commit
|
commitdiff
|
tree
2022-11-08
J
oseph
Sutton
third
_
party/heimdal:
I
ntrod
u
ce macro for commo
n
p
l
ugin
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-10-24
Joseph Sut
t
on
CVE-2022-3
4
37 third_party
/
heimda
l
: Pass
correct length
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-10-24
Jose
p
h
Sutton
C
VE-2022-3437 t
h
ird_part
y
/heimda
l
:
C
heck for ove
r
flow
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-10-24
Jos
e
ph Sutton
C
V
E
-2022-3437 thir
d
_party/heimdal: C
h
eck buffer length
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-10-24
Jos
e
ph Su
t
to
n
CVE-
2
022-3437 third_party/heimdal: Chec
k
t
he
resu
l
t
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-10-24
Joseph Sutton
CVE
-
2022-3437 thi
r
d_par
t
y/
h
eimdal
:
Avoid un
d
efine
d
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-10-24
Joseph Su
t
ton
CV
E
-2022-34
3
7 third_pa
r
ty/heimdal: Do
n
'
t
pass N
U
LL
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-10-24
J
o
s
e
ph
S
u
tton
C
VE-2022-3437
t
hird_party/heim
d
al: Use cons
t
a
n
t-ti
m
e
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-10-24
Joseph S
u
tto
n
CVE-2
0
22-3437 third_party/heimdal: Use constan
t
-time
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-10-24
Josep
h
S
utton
CVE-2022-3437 s4/auth/tes
t
s: A
d
d unit te
s
ts for unwrap_de
s
3
(
)
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-10-24
Jos
e
ph Sutton
C
V
E
-
2022-
3
437 third_pa
r
ty/heimdal_build:
A
dd gssa
p
i
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-10-24
Joseph S
u
tton
CVE-2022-343
7
third_pa
r
ty/heimdal: Remove __
f
unc__
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Joseph
S
utto
n
CVE-2021-20251 s3: Ensure bad
password count atomic
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Josep
h
Sutton
CVE-2021
-
202
5
1 s3:
r
pc_se
r
v
e
r
: Split change
_
o
e
m_password
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Jo
s
e
ph Sutton
CVE-2021-20
2
51 dsdb/co
m
m
o
n
:
R
emov
e
transaction lo
g
i
c
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
J
o
seph Sutton
C
VE-2021-20251
s
4-rpc_server:
Extend sco
p
e of
transaction
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Joseph Sutto
n
CVE-202
1
-20251 s4-rpc_server: Use user
pri
v
ileges
for
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Joseph Sutton
CVE-2021-20
2
5
1 s4-rpc_server: U
s
e auth
s
am_se
a
rch
_
a
ccount
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Jos
e
ph Sut
t
on
s3:rpc_serve
r
: Use BURN_STR()
t
o
ze
r
o password
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
J
oseph Sutto
n
libc
l
i:auth: Keep
p
assw
o
rds from convert_stri
n
g_ta
l
loc
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Jose
p
h Sutt
o
n
lib:
u
til: Check
m
emset_s() error code in
t
alloc_keep
_
s
ecret_
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Joseph Sutton
CVE-2021-20
2
51 s3: En
s
ure bad pa
s
s
w
ord
count
a
tomic
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Joseph
Sutton
CVE-202
1
-
2
0
2
51 s4:auth_
w
in
b
ind: Ch
e
c
k ret
u
rn status
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
J
o
seph Sutto
n
CVE
-
2021-
2
02
5
1 s4
-
r
p
c_server: Che
c
k
b
adPwdCoun
t
update
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Joseph Sutton
C
V
E
-
2
0
2
1
-20251 s4:
k
dc: Check badPwd
C
ount update return
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Joseph
S
u
t
ton
CVE-2021-20251 s4:k
d
c: Che
c
k return status of authsam_lo
g
on_
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Josep
h
Sutton
CVE-2021-20
2
51 s4:kdc: Mo
v
e lo
g
on su
c
cess
a
c
counting
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Joseph
S
utton
C
V
E
-2021-20251
s4:dsdb: Make badPwdCount
u
p
dat
e
ato
m
ic
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Joseph Sut
t
on
CVE-2021-2025
1
s
4
:dsd
b
: Update bad pass
w
ord count in
s
ide
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Joseph S
u
tton
CVE-2021-2025
1
s4-a
u
th: Pass
t
hrough
e
rr
o
r code from
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Joseph S
u
tto
n
C
V
E
-
2
021-20
2
51 auth4
:
De
t
ect ACCOUNT_LOCKED_OUT
error
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
J
o
s
e
ph Sutton
CVE-202
1
-20251
te
s
ts
/
krb5:
Add test
s
fo
r
p
assword lockout
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Josep
h
S
utton
CVE-2021
-
20
2
51 lib:crypto: Add P
y
thon functions for
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Jos
e
ph Sutton
C
V
E-
2
021-202
5
1
lib:
c
rypt
o
: Add
md4_hash_blob() for
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Joseph Sutton
C
VE-202
1
-20
2
51 li
b
:crypto
:
A
d
d
des_c
r
ypt_bl
o
b_16()
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Joseph Su
t
ton
li
b
:crypto: Use cons
t
ant tim
e
memo
r
y comparis
o
n to
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Jo
s
eph Sutton
lib:crypto
:
C
heck for overflow
b
e
fore fi
l
lin
g
pauth_tag
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Joseph
Sutton
s4:torture: Zero sam
r
_
U
serInfo
u
nion in passw
o
rd set
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Jos
e
p
h Sutton
li
b
:crypto: Zero
a
u
t
h_
t
ag array in encr
y
p
tion test
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-19
Joseph Sutton
s
3:rpc_
s
er
v
er
:
Fix typo in error message
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-05
Jo
s
e
p
h
S
u
tton
WHATSNEW
:
Docume
n
t new Protected
U
sers
g
roup
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-08-23
Josep
h
S
u
tton
libc
l
i/smb: Set error st
a
tu
s
if 'iov' pointer i
s
NULL
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-08-23
Joseph Sutton
l
i
bcli/smb:
Ensu
r
e
we ca
l
l tevent_req_nterror() on
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-28
J
oseph Sut
t
on
CVE-2022-32743
s4:
r
pc_ser
v
e
r
/
n
etlogon: Reconnec
t
to
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-28
Joseph
Sutton
CVE-2022-327
4
3 s4:rpc_server/
c
ommo
n
: Add dcesrv_samdb
_
c
onnec
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-28
Josep
h
Sutton
CVE-202
2
-32743 ds
d
b/modules/acl:
Allo
w
simulta
n
eous
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-28
Joseph S
u
tton
CVE-202
2
-
3
27
4
3 dsdb/modules/acl: Acc
o
unt for
sAM
A
ccountName
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-28
Joseph S
u
tt
o
n
CVE
-
2022-3274
3
s4:rpc_serve
r
/netl
o
g
o
n: Connect to
s
a
m
db
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-28
Joseph Sutto
n
C
VE-2022-32743 s4:rpc_se
r
v
e
r/n
e
tlogon: Alw
a
y
s
observe
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-28
Joseph Sutton
CVE
-
20
2
2
-
3274
3
s4
:
r
p
c_se
r
ver/net
l
ogon: Re
m
ove
dNSHos
t
Na
m
e
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-28
J
oseph Sutton
CVE-
2
022-32
7
43 dsd
b
/modules/acl: Handle FO
R
CE_ALLOW_VALIDATE
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-28
Joseph S
u
tton
CV
E
-
2
022
-
3
2743 dsdb/common:
A
dd
FORCE_ALLOW
_
VALIDAT
E
D_
D
NS_HO
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-28
Jos
e
p
h
Sutto
n
CVE-2022-32743 dsdb: Implem
e
nt validated dNSHostN
a
m
e
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-28
Josep
h
Sutton
C
V
E-
2
022-32743 s4/dsdb/util: Add fu
n
c
ti
o
n to check
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-28
Josep
h
S
u
tton
CV
E
-2022-32743 s4/dsdb/util:
A
dd dsdb_msg
_
get_sin
g
l
e
_
v
alue(
)
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-28
Joseph
S
u
tton
CVE-2022-32743 s4:torture/r
p
c: Fix te
s
ts t
o
m
a
tch Windows
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-28
J
oseph Sutton
CV
E
-202
2
-
3
2743 tests/py
_
credent
i
als: A
d
d tests for
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-28
Joseph Sutto
n
CVE
-
2
022-3
2
743 s4-acl:
Add
t
ests for va
l
ida
t
ed dNSHos
t
Name
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Joseph Sutton
CVE-2022
-
2031 te
s
tpro
g
s: Add test
f
or short-lived
tic
k
et
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Jos
e
ph S
u
t
t
o
n
CVE-2022-2031
s
4
:kp
a
sswd: Do not accept TGTs as kpas
s
w
d
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Joseph Sutton
CV
E
-
2022-20
3
1
s4
:
auth:
U
s
e
PAC to de
t
e
rmine whether
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Joseph
S
utton
CVE-2
0
22-2
0
31 auth: Add tic
k
et type field
to auth
_
user_info_
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Joseph
Sutton
C
VE-20
2
2-2031 tests/krb5: Ad
d
t
est that
we
c
annot
provide
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Joseph S
u
tton
CVE-2022-
3
2
74
4
s4:kp
a
sswd: E
n
sure we pass
t
he kpasswd
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Joseph Sutton
CV
E
-2022-327
4
4 s4:kdc: Modi
f
y
HDB plugin to only look
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Jo
s
eph Sutton
s4:
k
dc:
R
em
o
ve kadmin m
o
de fro
m
HDB plugin
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Jos
e
ph Sutt
o
n
CVE-202
2
-32744 s4:kdc: Rename keytab_name
->
k
passwd_keyt
a
b_name
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Joseph Sutton
CVE-2022-2031
s4:kdc: Don't
u
s
e
s
t
r
n
cmp
t
o
compare
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Joseph Sutton
C
V
E-2022-2031 tests/krb5:
Test truncated
forms of serve
r
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Joseph Sutton
CVE-2022-32744 s4:kdc: Don't allow HD
B
keytab
i
teration
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Joseph Sutton
CVE-202
2
-2
0
31
s4:kdc
:
Reject tick
e
ts dur
i
ng the last
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Joseph Sutton
CV
E
-
2
022-203
1
thir
d
_party/heimdal: Ad
d
func
t
i
o
n to
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Jos
e
ph Sutton
CVE-2022-2031 s4:k
d
c: Li
m
it kpas
s
w
d ticke
t
lifetime
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
J
o
seph Sutton
CVE-2022-203
1
s4:kdc: Fix canonicalisat
i
on o
f
kadmin
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Joseph Sut
t
on
CVE-20
2
2
-
2031 s4:kdc: Ref
a
ctor samb
a
_kdc_g
e
t_entry_p
r
in
c
ip
a
l
(
)
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Jos
e
p
h
Sutton
CVE-2022-2031 s
4
:kdc: Split out a samba_
k
dc_get_entry_princi
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Joseph Sutton
s4:kpass
w
d: Restructure code for clarity
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Jos
e
ph Sutton
CVE-2022-2031
s
4:
k
passwd: Require
an initial tic
k
et
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Jos
e
ph Sutton
CVE-2
0
2
2
-2031 gensec_
k
rb5: Add
h
elpe
r
func
t
ion
t
o
chec
k
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Joseph Sutton
CVE-
2
022-2031 s4:kpasswd: Return
a
kpasswd error c
o
de
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Jo
s
eph Sutton
CVE-2022-2031
lib:krb5_wrap: Generate v
a
lid error
codes
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Joseph Sutton
CVE-2022-203
1
s4:kpassw
d
: Don't return AP-REP on failure
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Joseph Sutton
CVE-2022-2031
s4:kpass
w
d
:
Correctly g
e
ner
a
te error
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-07-27
Jo
s
eph Sutton
CV
E
-
2
022-2031 tests/krb5: Add
tests f
o
r
kpasswd serv
i
ce
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
next
