adamwill / 389-ds-base

Forked from 389-ds-base 4 years ago
Clone

4062dd1 Ticket #47308 - unintended information exposure when anonymous access is set to rootdse

Authored and Committed by nhosoi 11 years ago
    Ticket #47308 - unintended information exposure when anonymous access is set to rootdse
    
    Bug description: The actual search base was not being checked
    at all.  There was a check for the search base when this feature
    was initially implemented, but it was inadvertently removed when
    changes were made to reduce the DN normalization throughout the
    source tree (commit f6397113666f06848412bb12f754f04258cfa5fa).
    
    Fix description: This patch adds the search base check back.
    
    Note: CVE-2013-1897
    
    https://fedorahosted.org/389/ticket/47308
    
    Reviewed by Rich, Noriko and Mark.
    (cherry picked from commit 4b2d700b77c1d4a0a2ad6592e2296068a200cbdd)
    
        
file modified
+1 -1