CVE-2020-10704: lib util asn1: Add ASN.1 max tree depth

Add maximum parse tree depth to the call to asn1_init, which will be used to limit the depth of the ASN.1 parse tree. Credit to OSS-Fuzz REF: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20454 BUG: https://bugzilla.samba.org/show_bug.cgi?id=14334 Signed-off-by: Gary Lockyer <gary@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
author: Gary Lockyer <gary@catalyst.net.nz> 2020-04-03 12:18:03 +1300
committer: Gary Lockyer <gary@samba.org> 2020-05-04 02:59:31 +0000
commit: f467727db5ff6a6e58d9b590e4d443a1d974b679 (patch)
tree: 9269acc0655bcfee4676215c85f8c2ad79ef2744 /libcli/cldap
parent: 62621bd686a91328ae378cd56f9876c66be8eac4 (diff)
download: samba-f467727db5ff6a6e58d9b590e4d443a1d974b679.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/libcli/cldap/cldap.c b/libcli/cldap/cldap.c
index f609bf278e4..3f687728517 100644
--- a/libcli/cldap/cldap.c
+++ b/libcli/cldap/cldap.c
@@ -233,7 +233,7 @@ static bool cldap_socket_recv_dgram(struct cldap_socket *c,
 		goto error;
 	}
 
-	asn1 = asn1_init(in);
+	asn1 = asn1_init(in, ASN1_MAX_TREE_DEPTH);
 	if (!asn1) {
 		goto nomem;
 	}
author	Gary Lockyer <gary@catalyst.net.nz>	2020-04-03 12:18:03 +1300
committer	Gary Lockyer <gary@samba.org>	2020-05-04 02:59:31 +0000
commit	f467727db5ff6a6e58d9b590e4d443a1d974b679 (patch)
tree	9269acc0655bcfee4676215c85f8c2ad79ef2744 /libcli/cldap
parent	62621bd686a91328ae378cd56f9876c66be8eac4 (diff)
download	samba-f467727db5ff6a6e58d9b590e4d443a1d974b679.tar.gz