]> git.ipfire.org Git - thirdparty/samba.git/commit
projects / thirdparty / samba.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 207489b) | patch
CVE-2023-34967: CI: add a test for type checking of dalloc_value_for_key()
authorRalph Boehme <slow@samba.org>
Wed, 31 May 2023 14:26:14 +0000 (16:26 +0200)
committerJule Anger <janger@samba.org>
Fri, 14 Jul 2023 13:12:27 +0000 (15:12 +0200)
commit4cb781242274f95e9a56e7e80599d6beaf8ca36a
tree9d2da890c983c8f3916c8d469a2a7b0f1d31990ctree | snapshot
parent207489b6b922cddf945227b20ae8543a4e01b686commit | diff
CVE-2023-34967: CI: add a test for type checking of dalloc_value_for_key()

Sends a maliciously crafted packet where the value in a key/value style
dictionary for the "scope" key is a simple string object whereas the server
expects an array. As the server doesn't perform type validation on the value, it
crashes when trying to use the "simple" object as a "complex" one.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15341

Signed-off-by: Ralph Boehme <slow@samba.org>
source4/torture/rpc/mdssvc.c diff | blob | blame | history
Mirror of https://github.com/samba-team/samba.git