首页 发现 帮助
注册 登录
Apq
/
389-ds-base
镜像自地址 https://github.com/389ds/389-ds-base.git
1
0
派生 0
文件 工单管理 0 Wiki
浏览代码

Bug 1347760 - CVE-2016-4992 389-ds-base: Information disclosure via repeated use of LDAP ADD operation, etc.

Description: do not overwrite rc used to decide if bind was successful.
When the bind is through ldapi/autobind, an entry does not exist to be
checked with slapi_check_account_lock.  In that case, a variable rc is
not supposed to be modified which confuses the following code path.

Reviewed by [email protected].
Ludwig Krispenz 9 年之前
父节点
e6b48924ad
当前提交
caa351ae0c
共有 1 个文件被更改,包括 4 次插入2 次删除
分列视图 显示文件统计
  1. 4 2
      ldap/servers/slapd/bind.c

+ 4 - 2
ldap/servers/slapd/bind.c
查看文件 

@@ -775,10 +775,12 @@ do_bind( Slapi_PBlock *pb )
 
                      */
 
                     if (!slapi_be_is_flag_set(be, SLAPI_BE_FLAG_REMOTE_DATA)) {
 
                         bind_target_entry = get_entry(pb, slapi_sdn_get_ndn(sdn));
 
-                        rc = slapi_check_account_lock(pb, bind_target_entry, pw_response_requested, 1, 1);
 
-                        if (1 == rc) { /* account is locked */
 
+                        myrc = slapi_check_account_lock(pb, bind_target_entry, pw_response_requested, 1, 1);
 
+                        if (1 == myrc) { /* account is locked */
 
+                            rc = myrc;
 
                             goto account_locked;
 
                         }
 
+                        myrc = 0;
 
                     }
 
                     if (!auto_bind) {
 
                         /*