git.samba.org / samba.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 5d6bcef) | patch
CVE-2020-10704: smb.conf: Add max ldap request sizes
authorGary Lockyer <gary@catalyst.net.nz>
Mon, 6 Apr 2020 21:09:01 +0000 (09:09 +1200)
committerGary Lockyer <gary@samba.org>
Mon, 4 May 2020 02:59:32 +0000 (02:59 +0000)
commitd7e5213818b960325909c73432cba34ad270fd50
tree73155d46bb1358ac82123b3f46641b803a2ade9atree
parent5d6bcef4b4cb0c086733353469ffc04dfaa8ccddcommit | diff
CVE-2020-10704: smb.conf: Add max ldap request sizes

Add two new smb.conf parameters to control the maximum permitted ldap
request size.

Adds:
   ldap max anonymous request size       default 250Kb
   ldap max authenticated request size   default 16Mb

Credit to OSS-Fuzz

REF: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20454
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14334

Signed-off-by: Gary Lockyer <gary@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
docs-xml/smbdotconf/ldap/ldapmaxanonrequest.xml [new file with mode: 0644] blob
docs-xml/smbdotconf/ldap/ldapmaxauthrequest.xml [new file with mode: 0644] blob
lib/param/loadparm.c diff | blob | history
source3/param/loadparm.c diff | blob | history
Samba Shared Repository