389-ds-base

Clone
Source Code
GIT

84b8bfd Bug 1199675 - CVE-2014-8112 CVE-2014-8105 389-ds-base: various flaws [fedora-all]

2 files Authored by lkrispen 9 years ago, Committed by nhosoi 9 years ago,
raw patch tree parent
2 files changed. 28 lines added. 17 lines removed.
ldap/servers/plugins/retrocl/retrocl_po.c
file modified
+6 -0
ldap/servers/slapd/modify.c
file modified
+22 -17 
    Bug 1199675 - CVE-2014-8112 CVE-2014-8105 389-ds-base: various flaws [fedora-all]
    
    Fix for CVE-2014-8112
    
    	If the unhashed pw switch is set to off this should only
            prevent the generation of the unhashed#user#password
    	attribute.
    	But encoding of pw values and detiecetion which values have
    	to be deleted needs to stay intact.
    	So the check if the switch is set has to be placed close to
            the generation of the attribute in different 'if' branches
    
    Reviewed by Noriko, thanks
    
    (cherry picked from commit e5de803f4ab1b097c637c269fcc8b567e664c00d)
file modified
+6 -0
file modified
+22 -17
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.