git.ipfire.org Git - thirdparty/samba.git/commit

]> git.ipfire.org Git - thirdparty/samba.git/commit

projects / thirdparty / samba.git / commit

author	Andrew Bartlett <abartlet@samba.org>
	Fri, 29 Nov 2019 07:58:47 +0000 (20:58 +1300)
committer	Karolin Seeger <kseeger@samba.org>
	Tue, 21 Jan 2020 10:11:39 +0000 (10:11 +0000)
commit	34a8cee348d3dfea18e92a4ae829ae797a652192
tree	2c2698f86c7a42ab1c2981044df39a863d7dee06	tree
parent	86023642c3961f00d0e4e6c71086739d9d568276	commit \| diff

CVE-2019-14907 lib/util: Do not print the failed to convert string into the logs

The string may be in another charset, or may be sensitive and
certainly may not be terminated. It is not safe to just print.

Found by Robert Święcki using a fuzzer he wrote for smbd.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14208
Signed-off-by: Andrew Bartlett <abartlet@samba.org>

lib/util/charset/convert_string.c

diff | blob | blame | history

Mirror of https://github.com/samba-team/samba.git

RSS Atom