mart-w/kanidm
1
0
Fork 0
mirror of https://github.com/kanidm/kanidm.git synced 2025-02-23 12:37:00 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity
kanidm/server
History
Firstyear 10ad183732
[SECURITY: LOW] Administrator triggered thread crash in oauth2 claim maps #2686 (#2686) 
When an admin configured oauth2 custom claims during the creation it
was not enforced that at least one value must be present. This led to
an incorrect logic flaw in str_concat! which didn't handle the 0 case.

This hardens str_concat! to prevent the thread crash by using itertools
for the join instead, and it enforces stricter validation on the valueset
to deny creation of empty claims.

This fix has a low security impact as only an administrator or high
level user can trigger this as a possible denial of service.

Fixes #2680 Fixes #2681
2024-03-26 01:43:03 +00:00
..
core fix api typo (#2657) 2024-03-18 16:29:28 +07:00
daemon 20240301 systemd uid (#2602) 2024-03-07 03:25:54 +00:00
lib [SECURITY: LOW] Administrator triggered thread crash in oauth2 claim maps #2686 (#2686) 2024-03-26 01:43:03 +00:00
lib-macros Adding a builtin class for all built-in things (#2603) 2024-03-06 01:33:14 +00:00
testkit 20240312 concread upgrade (#2668) 2024-03-19 12:06:52 +07:00
testkit-macros CLI integration test beginnings (#2261) 2023-10-30 06:10:54 +00:00
web_ui Update bootstrap 5.0.2 to 5.3.3 & minor UI fixes (#2650) 2024-03-13 00:38:24 +00:00
builder.sh 1399 cleanup reorg (#1412) 2023-03-01 13:10:52 +10:00
Dockerfile Add tools for remigration and domain level raising (#2481) 2024-02-06 10:01:06 +00:00