Commit - SSSD/sssd - e45e50e4523e36f310d7ff0b052500c024c434bf

SSSD / sssd

`e45e50e` sysdb: sanitize search filter input

2 files Authored by sbose 6 years ago, Committed by lslebodn 6 years ago,

raw patch tree parent

2 files changed. 42 lines added. 8 lines removed.

src/db/sysdb_ops.c

file modified

+35 -8

src/tests/sysdb-tests.c

file modified

+7 -0

    sysdb: sanitize search filter input
    
    This patch sanitizes the input for sysdb searches by UPN/email, SID and
    UUID.
    
    This security issue was assigned CVE-2017-12173
    
    Resolves:
    https://pagure.io/SSSD/sssd/issue/3549
    
    Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com>
    Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
    (cherry picked from commit 1f2662c8f97c9c0fa250055d4b6750abfc6d0835)

src/db/sysdb_ops.c

file modified

+35 -8

src/tests/sysdb-tests.c

file modified

+7 -0

SSSD / sssd

Source Code

Documentation

e45e50e sysdb: sanitize search filter input

2 files Authored by sbose 6 years ago, Committed by lslebodn 6 years ago,

`e45e50e` sysdb: sanitize search filter input