Acasă Explorează Ajutor
Înregistrare Autentificare
Apq
/
389-ds-base
oglindă de https://github.com/389ds/389-ds-base.git
1
0
Bifurcare 0
Fisiere Probleme 0 Wiki
Răsfoiți Sursa

Ticket #47308 - unintended information exposure when anonymous access is set to rootdse

Bug description: The actual search base was not being checked
at all.  There was a check for the search base when this feature
was initially implemented, but it was inadvertently removed when
changes were made to reduce the DN normalization throughout the
source tree (commit f6397113666f06848412bb12f754f04258cfa5fa).

Fix description: This patch adds the search base check back.

Note: CVE-2013-1897

https://fedorahosted.org/389/ticket/47308

Reviewed by Rich, Noriko and Mark.
Noriko Hosoi 12 ani în urmă
părinte
2e5a30d6c9
comite
4b2d700b77
1 a modificat fișierele cu 1 adăugiri și 1 ștergeri
Vizualizare divizată Arată Statisticile Diff
  1. 1 1
      ldap/servers/slapd/search.c

+ 1 - 1
ldap/servers/slapd/search.c
Vizualizați fișierul 

@@ -141,7 +141,7 @@ do_search( Slapi_PBlock *pb )
 
 	/* If anonymous access is only allowed for searching the root DSE,
 
 	 * we need to reject any other anonymous search attempts. */
 
 	if ((slapi_sdn_get_dn(&(operation->o_sdn)) == NULL) &&
 
-	    (scope != LDAP_SCOPE_BASE) &&
 
+	    ((rawbase && strlen(rawbase) > 0) || (scope != LDAP_SCOPE_BASE)) &&
 
 	    (config_get_anon_access_switch() == SLAPD_ANON_ACCESS_ROOTDSE)) {
 
 		op_shared_log_error_access(pb, "SRCH", rawbase?rawbase:"",
 
 		                           "anonymous search not allowed");