summaryrefslogtreecommitdiff
Commit message (Expand)AuthorAgeFilesLines
* ldb: Release LDB 1.5.1ldb-1.5.1Andrew Bartlett2018-08-154-1/+285
* ldb: extend API testsAndrew Bartlett2018-08-151-3/+44
* ldb: Add new function ldb_dn_add_child_val()Andrew Bartlett2018-08-154-0/+161
* ldb_tdb: Remove pointless check of ldb_dn_is_valid()Andrew Bartlett2018-08-151-8/+0
* fix mem leak in ldbsearchAndrej Gessel2018-08-151-0/+5
* fix mem leak in ltdb_index_dn_base_dn and ltdb_search_indexedAndrej Gessel2018-08-151-0/+2
* ldb: no need to call del_transaction in ldb_transaction_commitJoe Guo2018-08-151-3/+0
* s3:libads: Free addr before we free the contextAndreas Schneider2018-08-141-1/+1
* ldb tests: fix assertion on wrong pointerTimur I. Bakeyev2018-08-141-1/+1
* cracknames: Fix DoS (NULL pointer de-ref) when not servicePrincipalName is se...Andrew Bartlett2018-08-142-1/+45
* libsmb: Harden smbc_readdir_internal() against returns from malicious servers.Jeremy Allison2018-08-142-8/+51
* libsmb: Ensure smbc_urlencode() can't overwrite passed in buffer.Jeremy Allison2018-08-141-2/+7
* CVE-2018-10919 tests: Add extra test for dirsync deleted object corner-caseTim Beale2018-08-141-26/+131
* CVE-2018-10919 acl_read: Fix unauthorized attribute access via searchesTim Beale2018-08-143-15/+247
* CVE-2018-10919 acl_read: Flip the logic in the dirsync checkTim Beale2018-08-141-10/+7
* CVE-2018-10919 acl_read: Small refactor to aclread_callback()Tim Beale2018-08-141-14/+17
* CVE-2018-10919 acl_read: Split access_mask logic out into helper functionTim Beale2018-08-141-19/+35
* CVE-2018-10919 security: Fix checking of object-specific CONTROL_ACCESS rightsTim Beale2018-08-141-0/+10
* CVE-2018-10919 tests: test ldap searches for non-existent attributes.Gary Lockyer2018-08-141-0/+9
* CVE-2018-10919 tests: Add test case for object visibility with limited rightsTim Beale2018-08-142-0/+69
* CVE-2018-10919 tests: Add tests for guessing confidential attributesTim Beale2018-08-143-0/+928
* CVE-2018-10919 security: Add more comments to the object-specific access checksTim Beale2018-08-141-8/+22
* CVE-2018-10919 security: Move object-specific access checks into separate fun...Tim Beale2018-08-141-27/+59
* CVE-2018-1140 dns: Add a test to trigger the LDB casefolding issue on invalid...Kai Blin2018-08-142-0/+90
* Release LDB 1.5.0 for CVE-2018-1140ldb-1.5.0Andrew Bartlett2018-08-144-1/+284
* CVE-2018-1140 ldb: Add tests for search add and rename with a bad dn= DNAndrew Bartlett2018-08-141-0/+156
* CVE-2018-1140 ldb_tdb: Check for DN validity in add, rename and searchAndrew Bartlett2018-08-142-1/+42
* CVE-2018-1140 ldb_tdb: Ensure the dn in distinguishedName= is valid before useAndrew Bartlett2018-08-141-0/+9
* CVE-2018-1140 ldb: Check for ldb_dn_get_casefold() failure in ldb_sqliteAndrew Bartlett2018-08-141-0/+3
* CVE-2018-1140 Add NULL check for ldb_dn_get_casefold() in ltdb_index_dn_attr()Andrej Gessel2018-08-141-0/+9
* CVE-2018-1139 libcli/auth: Do not allow ntlmv1 over SMB1 when it is disabled ...Günther Deschner2018-08-143-4/+3
* CVE-2018-1139 selftest: verify whether ntlmv1 can be used via SMB1 when it is...Günther Deschner2018-08-141-1/+1
* CVE-2018-1139 s3-utils: use enum ntlm_auth_level in ntlm_password_check().Günther Deschner2018-08-141-2/+4
* CVE-2018-1139 libcli/auth: fix debug messages in hash_password_check()Günther Deschner2018-08-141-4/+4
* CVE-2018-1139 libcli/auth: Add initial tests for ntlm_password_check()Andrew Bartlett2018-08-144-0/+430
* g_lock: Simplify g_lock_trylockVolker Lendecke2018-08-141-18/+35
* g_lock: Avoid a double call to serverid_existVolker Lendecke2018-08-141-1/+2
* selftest: Load time_audit and full_audit modules for all testsChristof Schmitt2018-08-131-6/+6
* s3: vfs: time_audit: fix handling of token_blob in smb_time_audit_offload_rea...Ralph Wuerthner2018-08-131-9/+3
* s3:winbind: Fix memory leak in nss_init()Andreas Schneider2018-08-131-8/+18
* s3:registry: Fix possible memory leak in _reg_perfcount_multi_sz_from_tdb()Andreas Schneider2018-08-111-4/+11
* s3:libads: Fix memory leaks in ads_krb5_chg_password()Andreas Schneider2018-08-111-0/+2
* s3:client: Avoid a possible fd leak in do_get()Andreas Schneider2018-08-111-0/+7
* s4:lib: Fix a possible fd leak in gp_get_file()Andreas Schneider2018-08-111-8/+16
* s3:utils: Do not leak memory in new_user()Andreas Schneider2018-08-111-3/+7
* s3:utils: Do not overflow the destination buffer in net_idmap_restore()Andreas Schneider2018-08-111-2/+2
* s3:passdb: Don't leak memory on error in fetch_ldap_pw()Andreas Schneider2018-08-111-0/+4
* wbinfo: Free memory when we leave wbinfo_dsgetdcname()Andreas Schneider2018-08-111-0/+3
* s3: tests: smbclient. Regression test to ensure we get NT_STATUS_DIRECTORY_NO...Jeremy Allison2018-08-101-0/+42
* s4/torture: Add new test for DELETE_ON_CLOSE on non-empty directoriesAnoop C S2018-08-101-0/+87
View Lorry Controller Status