git.samba.org - samba.git/search

2022-07-27	Joseph Sutton	CVE-2022-2031 s4:kpasswd: Do not accept TGTs as kpasswd... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 s4:auth: Use PAC to determine whether... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 auth: Add ticket type field to auth_user_info_... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 tests/krb5: Add test that we cannot provide... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32744 s4:kpasswd: Ensure we pass the kpasswd... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32744 s4:kdc: Modify HDB plugin to only look... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	s4:kdc: Remove kadmin mode from HDB plugin Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32744 s4:kdc: Rename keytab_name -> kpasswd_keytab_name Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 s4:kdc: Don't use strncmp to compare... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 tests/krb5: Test truncated forms of server... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32744 s4:kdc: Don't allow HDB keytab iteration Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 s4:kdc: Reject tickets during the last... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 third_party/heimdal: Add function to... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 s4:kdc: Limit kpasswd ticket lifetime... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 s4:kdc: Fix canonicalisation of kadmin... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 s4:kdc: Refactor samba_kdc_get_entry_principal() Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 s4:kdc: Split out a samba_kdc_get_entry_princi... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	s4:kpasswd: Restructure code for clarity Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 s4:kpasswd: Require an initial ticket Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 gensec_krb5: Add helper function to check... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 s4:kpasswd: Return a kpasswd error code... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 lib:krb5_wrap: Generate valid error codes... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 s4:kpasswd: Don't return AP-REP on failure Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 s4:kpasswd: Correctly generate error... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 tests/krb5: Add tests for kpasswd service Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 tests/krb5: Consider kadmin/* principals... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32744 selftest: Specify Administrator kvno... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 tests/krb5: Add kpasswd_exchange() method Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 tests/krb5: Allow requesting a TGT to... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	tests/krb5: Add option for creating accounts with expired... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	tests/krb5: Fix enum typo Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 tests/krb5: Add methods to send and receive... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 tests/krb5: Add 'port' parameter to connect() Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 tests/krb5: Add methods to create ASN1... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 tests/krb5: Add new definitions for kpasswd Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32744 tests/krb5: Correctly calculate salt... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 tests/krb5: Split out _make_tgs_request() Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32744 tests/krb5: Correctly handle specifying... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 s4:kpasswd: Add MIT fallback for decoding... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 s4:kpasswd: Account for missing target... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-2031 third_party/heimdal: Check generate_pac... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32745 s4/dsdb/util: Correctly copy values... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32745 s4/dsdb/util: Don't call memcpy() with... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32745 s4/dsdb/util: Use correct value for... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32745 s4/dsdb/samldb: Check for empty values... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32746 ldb: Make use of functions for appending... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32746 ldb: Add functions for appending to... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32746 ldb: Ensure shallow copy modifications... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32746 ldb: Add flag to mark message element... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32746 s4/registry: Use LDB_FLAG_MOD_TYPE(... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32746 s4/dsdb/tombstone_reanimate: Use LDB_FLAG_MOD... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32746 s4/dsdb/repl_meta_data: Use LDB_FLAG_MOD_TYPE... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32746 ldb:rdn_name: Use LDB_FLAG_MOD_TYPE... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32746 s4/dsdb/acl: Fix LDB flags comparison Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32746 s4:torture: Fix LDB flags comparison Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32746 s4/dsdb/partition: Fix LDB flags comparison Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32746 s4:dsdb:tests: Add test for deleting... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-07-27	Joseph Sutton	CVE-2022-32746 s4/dsdb/objectclass_attrs: Fix typo Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-26	Joseph Sutton	samba-tool user: Accomodate missing unicodePwd in getpasswor... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-26	Joseph Sutton	samba-tool user: When possible, obtain AES256 key and... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-26	Joseph Sutton	auth/credentials: Add get_aes256_key() Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-26	Joseph Sutton	auth/credentials: Add cli_credentials_get_aes256_key() Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-26	Joseph Sutton	s4:kdc: Add helper function to extract AES256 key and... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-26	Joseph Sutton	tests/krb5: Add test for presence of NT hash Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-14	Joseph Sutton	s4:kdc: Make RBCD access check less strict Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-14	Joseph Sutton	tests/krb5: Use object() rather than auto() to initialise... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-14	Joseph Sutton	dsdb/common: Make some parameters const Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-14	Joseph Sutton	lib:krb5_wrap: Add const to parameters for smb_krb5_create_k... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-14	Joseph Sutton	s4:kdc: Add space in error message Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-14	Joseph Sutton	python: Don't use deprecated escape sequences Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-14	Joseph Sutton	libcli/security: Fix typos Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-14	Joseph Sutton	libcli:util: Update werror table Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-10	Joseph Sutton	bootstrap: Fix [gm]old linker existence check Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-10	Joseph Sutton	bootstrap: Remove duplicate dict key Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-09	Joseph Sutton	lib/util: Delegate constant time memcmp to gnutls_memcmp() Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-09	Joseph Sutton	lib/util: Add test of mem_equal_const_time() Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-09	Joseph Sutton	lib/util: Add test of data_blob_equal_const_time() Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-09	Joseph Sutton	lib/util: Reduce sum variable to uint8_t Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-09	Joseph Sutton	lib/util: Change function to mem_equal_const_time() Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-09	Joseph Sutton	lib/util: Change function to data_blob_equal_const_time() Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-09	Joseph Sutton	auth: Use constant-time memcmp when comparing sensitive... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-09	Joseph Sutton	lib/util: Move memcmp_const_time() to util.c Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-06-09	Joseph Sutton	tests/krb5/test_ldap.py: Increase maximum threshold... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-05-12	Joseph Sutton	compression: Move maximum length calculation out of... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-05-12	Joseph Sutton	compression: Use correct values for max len and offset Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-05-12	Joseph Sutton	compression: Replace divisions with shifts Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-05-12	Joseph Sutton	compression: Remove unneeded loop variable Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-05-12	Joseph Sutton	compression: Reduce scope of variables Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-05-12	Joseph Sutton	compression: Use PUSH_LE_U32 for first output buffer... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-05-12	Joseph Sutton	compression: Add bounds check for first output buffer... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-05-12	Joseph Sutton	compression: Remove helper variables str1 and str2 Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-05-12	Joseph Sutton	compression: Fix writing output flags Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-05-12	Joseph Sutton	compression: Remove byte_left variable Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-05-12	Joseph Sutton	compression: Remove redundant bounds check Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-05-12	Joseph Sutton	compression: Add range check for indic_pos Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-05-12	Joseph Sutton	compression: Remove redundant nibble_index check Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-05-12	Joseph Sutton	compression: Make use of PUSH_LE_Uxx macros Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-05-12	Joseph Sutton	compression: Simplify code by making indic_pos an index Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-05-12	Joseph Sutton	compression: Make use of CHECK_{IN,OUT}PUT_BYTES macros Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
2022-05-12	Joseph Sutton	compression: Simplify code by removing metadata_size... Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>	commit \| commitdiff \| tree
next

Samba Shared Repository

RSS Atom