git.samba.org - amitay/samba.git/commit

git.samba.org / amitay / samba.git / commit

author	Gary Lockyer <gary@catalyst.net.nz>
	Thu, 2 Apr 2020 23:18:03 +0000 (12:18 +1300)
committer	Gary Lockyer <gary@samba.org>
	Mon, 4 May 2020 02:59:31 +0000 (02:59 +0000)
commit	f467727db5ff6a6e58d9b590e4d443a1d974b679
tree	9269acc0655bcfee4676215c85f8c2ad79ef2744	tree
parent	62621bd686a91328ae378cd56f9876c66be8eac4	commit \| diff

CVE-2020-10704: lib util asn1: Add ASN.1 max tree depth

Add maximum parse tree depth to the call to asn1_init, which will be
used to limit the depth of the ASN.1 parse tree.

Credit to OSS-Fuzz

REF: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20454
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14334

Signed-off-by: Gary Lockyer <gary@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>

16 files changed:

Amitay's Samba development tree

RSS Atom

auth/gensec/gensec_util.c		diff \| blob \| history
lib/fuzzing/fuzz_ldap_decode.c		diff \| blob \| history
lib/util/asn1.c		diff \| blob \| history
lib/util/asn1.h		diff \| blob \| history
lib/util/tests/asn1_tests.c		diff \| blob \| history
libcli/auth/spnego_parse.c		diff \| blob \| history
libcli/cldap/cldap.c		diff \| blob \| history
libcli/ldap/ldap_message.c		diff \| blob \| history
source3/lib/tldap.c		diff \| blob \| history
source3/lib/tldap_util.c		diff \| blob \| history
source3/libsmb/clispnego.c		diff \| blob \| history
source3/torture/torture.c		diff \| blob \| history
source4/auth/gensec/gensec_krb5.c		diff \| blob \| history
source4/ldap_server/ldap_server.c		diff \| blob \| history
source4/libcli/ldap/ldap_client.c		diff \| blob \| history
source4/libcli/ldap/ldap_controls.c		diff \| blob \| history