git.samba.org / samba.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b4ea50f) | patch
CVE-2020-25717: s3:winbindd: make sure we default to r->out.authoritative = true
authorStefan Metzmacher <metze@samba.org>
Mon, 4 Oct 2021 15:29:34 +0000 (17:29 +0200)
committerJule Anger <janger@samba.org>
Tue, 9 Nov 2021 19:45:32 +0000 (19:45 +0000)
commit05587361498ae8131435aca2d8c860e98f605581
tree2dc956522340c514babcb7275946e76b60fc713btree
parentb4ea50f8b272a3b1d1d9d9ceda3641c22a082604commit | diff
CVE-2020-25717: s3:winbindd: make sure we default to r->out.authoritative = true

We need to make sure that temporary failures don't trigger a fallback
to the local SAM that silently ignores the domain name part for users.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14556

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
source3/winbindd/winbindd_dual_srv.c diff | blob | history
source3/winbindd/winbindd_irpc.c diff | blob | history
source3/winbindd/winbindd_pam.c diff | blob | history
source3/winbindd/winbindd_pam_auth_crap.c diff | blob | history
source3/winbindd/winbindd_util.c diff | blob | history
Samba Shared Repository