ASA-2019-00119 – Samba: Out-of-bounds read in ldb_wildcard_compare()

A user with read permission on the LDAP server can crash the shared LDAP server process of the Samba AD DC. By using a search expression like (cn=test*multi*test*multi) an authenticated user can crash the shared LDAP process of the AD DC. Note that in Samba 4.7 and later, the default is not to have a shared LDAP process, unless -M prefork or -M single is specified on the command line to 'samba'.