CVE-2020-10730: vlv: Use strcmp(), not strncmp() checking the NULL terminated control OIDs

The end result is the same, as sizeof() includes the trailing NUL, but this avoids having to think about that. BUG: https://bugzilla.samba.org/show_bug.cgi?id=14364 Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Gary Lockyer <gary@catalyst.net.nz>
author: Andrew Bartlett <abartlet@samba.org> 2020-05-05 12:54:59 +1200
committer: Karolin Seeger <kseeger@samba.org> 2020-06-25 13:04:45 +0200
commit: 3ca77e3edc0ba2c9dd3f2c0394f8c2f799d989b9 (patch)
tree: 2df733ddb818b2cff8fcd896bba0b7d2deb0075a
parent: 55f01236e4453dd258df27dc9bac28745f93b1f4 (diff)
download: samba-3ca77e3edc0ba2c9dd3f2c0394f8c2f799d989b9.tar.gz
1 files changed, 2 insertions, 2 deletions
diff --git a/source4/dsdb/samdb/ldb_modules/vlv_pagination.c b/source4/dsdb/samdb/ldb_modules/vlv_pagination.c
index 980177cb05e..31e64b4bd78 100644
--- a/source4/dsdb/samdb/ldb_modules/vlv_pagination.c
+++ b/source4/dsdb/samdb/ldb_modules/vlv_pagination.c
@@ -682,8 +682,8 @@ vlv_copy_down_controls(TALLOC_CTX *mem_ctx, struct ldb_control **controls)
 		if (control->oid == NULL) {
 			break;
 		}
-		if (strncmp(control->oid, LDB_CONTROL_VLV_REQ_OID, sizeof(LDB_CONTROL_VLV_REQ_OID)) == 0 ||
-		    strncmp(control->oid, LDB_CONTROL_SERVER_SORT_OID, sizeof(LDB_CONTROL_SERVER_SORT_OID)) == 0) {
+		if (strcmp(control->oid, LDB_CONTROL_VLV_REQ_OID) == 0 ||
+		    strcmp(control->oid, LDB_CONTROL_SERVER_SORT_OID) == 0) {
 			continue;
 		}
 		new_controls[j] = talloc_steal(new_controls, control);
author	Andrew Bartlett <abartlet@samba.org>	2020-05-05 12:54:59 +1200
committer	Karolin Seeger <kseeger@samba.org>	2020-06-25 13:04:45 +0200
commit	3ca77e3edc0ba2c9dd3f2c0394f8c2f799d989b9 (patch)
tree	2df733ddb818b2cff8fcd896bba0b7d2deb0075a
parent	55f01236e4453dd258df27dc9bac28745f93b1f4 (diff)
download	samba-3ca77e3edc0ba2c9dd3f2c0394f8c2f799d989b9.tar.gz