search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
first · prev · next
CVE-2022-3437 third_party/heimdal: Don't pass NULL pointers to memcpy() in DES unwrap
2022-10-25 Joseph SuttonCVE-2022-3437 third_party/heimdal: Don't pass NULL...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-25 Joseph SuttonCVE-2022-3437 third_party/heimdal: Use constant-time...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-25 Joseph SuttonCVE-2022-3437 third_party/heimdal: Use constant-time...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-25 Joseph SuttonCVE-2022-3437 s4/auth/tests: Add unit tests for unwrap_des3()
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-25 Joseph SuttonCVE-2022-3437 third_party/heimdal_build: Add gssapi...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-25 Joseph SuttonCVE-2022-3437 third_party/heimdal: Remove __func__...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttondocs-xml: Fix outdated comment in documentation
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttons4:gensec Avoid memory leak in error case in gensec_gssapi
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttonpython: Remove unused imports in auth_log tests
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttonpython: Fix invalid escape by using a raw string
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttonpython: Use list comprehension in string_to_byte_array()
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttonsamba-tool: Fix double-word in samba-tool domain passwordset...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttondocs: Fix double-word in "prefork backoff increment"
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttondocs: Fix double-word in "inherit owner" manpage
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttontestprogs: fix CVE reference in kpassed test
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttons4-join: Fix typos in recent GET_ANC patch set
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttonldb: don't call comparison() directly in LDB_TYPESAFE_QSORT
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttons4-dsdb: Remove unused variables in token_group python...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttons4-dsdb: simplify conditional in python token_group...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttons4-dsdb: Remove unused import in token_group python...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttons3-utils: Fix typo in error message in net groupmap
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttonlibcli/security: Make null_sid static const, not just...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttonlibcli/security: Fix function header comments in SID...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttons4-dsdb: Use Python 'del' rather than assigning over...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttons4-dsdb: remove unused Python variables
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttons4-dsdb: Use a raw python string to avoid creating...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttons4-dsdb: Make tdo_attrs static const
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttons4-dsdb: Rename user_attrs to attrs to avoid conflict...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttons4-auth: Mention correct PAC buffer in error msg
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttons4-auth: Fix typo in erberos_pac_to_user_info_dc()
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttonlibrpc/ndr: Fix incorrect error string in SID parser
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttons4-kdc: Correct MIT talloc ctx names
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttons4-kdc: Fix typo in MIT glue
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-21 Joseph Suttonkrb5: Add compatability for krb5_const_pac type
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-20 Joseph Suttontests/krb5: Add test requesting a TGT expiring post...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-20 Joseph Suttontests/krb5: Add test requesting a service ticket expiring...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttonpyldb: Fix typos in function names
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttons4:kdc: Don't copy data for empty PAC buffer
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttons4:kdc: Make use of smb_krb5_data_from_blob() helper...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttons4:kdc: Refactor samba_make_krb5_pac()
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttonlib:krb5_wrap: Add helper functions to make krb5_data...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttondbcheck: Fix truncation of warning messages
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttondocs-xml: Remove nested calls to translate()
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttondocs-xml: Remove reference to invalid 'user' parameter
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttondocs-xml: 'security = auto' is now the default parameter
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttondocs-xml: Fix references to 'encrypt passwords' parameter
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttondocs-xml: Fix reference to 'wide links' parameter
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttondocs-xml: Fix reference to 'read only' parameter
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttondocs-xml: Remove references to obsolete 'write cache...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttondocs-xml: Fix reference to obsolete 'lock spin count...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttondocs-xml: Fix section links
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttonpytest: samba-tool: Fix undefined escape sequence
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttonpyldb: Fix tests going unused
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttonlib:crypto: Change error return to SMB_ASSERT()
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttonlib:krb5_wrap: Use case-sensitive comparison against...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttons4-auth: Add missing newlines to log messages
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttontests/krb5: Add create_ccache_with_ticket()
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttontests/krb5: Make use of client_opts for TGS-REQs
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttonpython: Handle LdbError thrown from functions operating...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttonpyldb: Have functions operating on DNs raise LdbError
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttonpython/samba: Fix typos in error messages
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttonpdb_samba_dsdb: Handle dsdb_search_one() errors
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-05 Joseph Suttonselftest: Simplify krb5 test environments
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-10-03 Joseph Suttontevent: Fix flag clearing
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-16 Joseph SuttonCVE-2020-25720 s4:dsdb/descriptor: Validate owner SIDs...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-16 Joseph SuttonCVE-2020-25720 s4-acl: Omit sDRightsEffective for computers...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-16 Joseph SuttonCVE-2020-25720 s4:ntvfs: Use se_file_access_check(...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-16 Joseph SuttonCVE-2020-25720: s4-acl: Move definition of acl_check_self_me...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-16 Joseph SuttonCVE-2020-25720 pydsdb: Add AD schema GUID constants
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-16 Joseph SuttonCVE-2020-25720 pydsdb: Add dsHeuristics constant definitions
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-16 Joseph SuttonCVE-2020-25720 s4/dsdb/util: Add functions for dsHeuristics...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-16 Joseph SuttonCVE-2020-25720 python:tests: Ensure that access checks...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-16 Joseph SuttonCVE-2020-25720 s4:tests/sec_descriptor: Add missing...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-13 Joseph SuttonCVE-2021-20251 s3: Ensure bad password count atomic...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph SuttonCVE-2021-20251 s3:rpc_server: Split change_oem_password...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph SuttonCVE-2021-20251 dsdb/common: Remove transaction logic...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph SuttonCVE-2021-20251 s4-rpc_server: Extend scope of transaction...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph SuttonCVE-2021-20251 s4-rpc_server: Use user privileges for...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph SuttonCVE-2021-20251 s4-rpc_server: Use authsam_search_account...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph Suttons3:rpc_server: Use BURN_STR() to zero password
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph Suttonlibcli:auth: Keep passwords from convert_string_talloc...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph Suttonlib:util: Check memset_s() error code in talloc_keep_secret_...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph SuttonCVE-2021-20251 s3: Ensure bad password count atomic...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph SuttonCVE-2021-20251 s4:auth_winbind: Check return status...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph SuttonCVE-2021-20251 s4-rpc_server: Check badPwdCount update...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph SuttonCVE-2021-20251 s4:kdc: Check badPwdCount update return...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph SuttonCVE-2021-20251 s4:kdc: Check return status of authsam_logon_...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph SuttonCVE-2021-20251 s4:kdc: Move logon success accounting...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph SuttonCVE-2021-20251 s4:dsdb: Make badPwdCount update atomic
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph SuttonCVE-2021-20251 s4:dsdb: Update bad password count inside...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph SuttonCVE-2021-20251 s4-auth: Pass through error code from...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph SuttonCVE-2021-20251 auth4: Detect ACCOUNT_LOCKED_OUT error...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph SuttonCVE-2021-20251 tests/krb5: Add tests for password lockout...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph SuttonCVE-2021-20251 lib:crypto: Add Python functions for...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph SuttonCVE-2021-20251 lib:crypto: Add md4_hash_blob() for...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph SuttonCVE-2021-20251 lib:crypto: Add des_crypt_blob_16()...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph Suttonlib:crypto: Use constant time memory comparison to...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph Suttonlib:crypto: Check for overflow before filling pauth_tag...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph Suttons4:torture: Zero samr_UserInfo union in password set...
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
2022-09-12 Joseph Suttonlib:crypto: Zero auth_tag array in encryption test
Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
 commit | commitdiff | tree
next
Samba GIT mirror