Djam/samba
1
0
Fork 0
mirror of https://abf.rosa.ru/djam/samba.git synced 2025-02-23 17:12:48 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
samba/CVE-2018-1057-8.patch
Andrey Bondrov cf91463eb4 Add patches to fix CVE-2018-1050 and CVE-2018-1057
2018-03-14 20:04:05 +10:00

29 lines
1.1 KiB
Diff
Raw Permalink Blame History

From a771b4ddfda633e7cd4d80548979f454cdb55949 Mon Sep 17 00:00:00 2001
From: Ralph Boehme <slow@samba.org>
Date: Fri, 16 Feb 2018 15:17:26 +0100
Subject: [PATCH 08/13] CVE-2018-1057: s4:dsdb/acl: add a NULL check for
talloc_new() in acl_check_password_rights()
Bug: https://bugzilla.samba.org/show_bug.cgi?id=13272
Signed-off-by: Ralph Boehme <slow@samba.org>
Reviewed-by: Stefan Metzmacher <metze@samba.org>
---
source4/dsdb/samdb/ldb_modules/acl.c | 4 ++++
1 file changed, 4 insertions(+)
Index: samba-4.3.11+dfsg/source4/dsdb/samdb/ldb_modules/acl.c
===================================================================
--- samba-4.3.11+dfsg.orig/source4/dsdb/samdb/ldb_modules/acl.c 2018-03-06 16:47:09.389513621 +0100
+++ samba-4.3.11+dfsg/source4/dsdb/samdb/ldb_modules/acl.c 2018-03-06 16:47:09.389513621 +0100
@@ -948,6 +948,10 @@ static int acl_check_password_rights(TAL
"unicodePwd", "dBCSPwd", NULL }, **l;
TALLOC_CTX *tmp_ctx = talloc_new(mem_ctx);
+ if (tmp_ctx == NULL) {
+ return LDB_ERR_OPERATIONS_ERROR;
+ }
+
c = ldb_request_get_control(req, DSDB_CONTROL_PASSWORD_CHANGE_OID);
if (c != NULL) {
/*
Reference in a new issue View git blame Copy permalink