git.samba.org / samba.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4087172) | patch
CVE-2021-20251 auth4: Reread the user record if a bad password is noticed.
authorAndrew Bartlett <abartlet@samba.org>
Tue, 30 Mar 2021 04:57:10 +0000 (17:57 +1300)
committerAndrew Bartlett <abartlet@samba.org>
Mon, 12 Sep 2022 23:07:37 +0000 (23:07 +0000)
commit7b8e32efc336fb728e0c7e3dd6fbe2ed54122124
tree0d3d42fa515ecfee0a62987e55170648fa182e26tree
parent408717242aad8adf4551f2394eee2d80a06c7e63commit | diff
CVE-2021-20251 auth4: Reread the user record if a bad password is noticed.

As is, this is pointless, as we need a transaction to make this
any less of a race, but this provides the steps towards that goal.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14611

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Reviewed-by: Andreas Schneider <asn@samba.org>
source4/auth/sam.c diff | blob | history
Samba Shared Repository