diff options
author | Björn Baumbach <bb@sernet.de> | 2019-08-06 16:32:32 +0200 |
---|---|---|
committer | Karolin Seeger <kseeger@samba.org> | 2019-10-24 10:52:36 +0200 |
commit | b3a71bf847e3797582a2c657720726694fe424ba (patch) | |
tree | ab81ab30f4b7dce437b5ba54c231156ff62e9876 /selftest | |
parent | e0e8830b88e45e3e954b1e5074cef8c8bf5406a8 (diff) | |
download | samba-b3a71bf847e3797582a2c657720726694fe424ba.tar.gz |
CVE-2019-14833 dsdb: send full password to check password script
utf8_len represents the number of characters (not bytes) of the
password. If the password includes multi-byte characters it is required
to write the total number of bytes to the check password script.
Otherwise the last bytes of the password string would be ignored.
Therefore we rename utf8_len to be clear what it does and does
not represent.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=12438
Signed-off-by: Björn Baumbach <bb@sernet.de>
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Diffstat (limited to 'selftest')
-rw-r--r-- | selftest/knownfail.d/unacceptable-passwords | 1 |
1 files changed, 0 insertions, 1 deletions
diff --git a/selftest/knownfail.d/unacceptable-passwords b/selftest/knownfail.d/unacceptable-passwords deleted file mode 100644 index 75fa2fc32b8..00000000000 --- a/selftest/knownfail.d/unacceptable-passwords +++ /dev/null @@ -1 +0,0 @@ -^samba.tests.samba_tool.user_check_password_script.samba.tests.samba_tool.user_check_password_script.UserCheckPwdTestCase.test_checkpassword_unacceptable\(chgdcpass:local\)
\ No newline at end of file |