The Samba-Bugzilla – Attachment 8842 Details for
Bug 9834
segfault when loging in with wrong password from w2k8r2
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
patches cherry-picked from master
0001-auth-ntlmssp-Avoid-use-after-free-of-user_info-after.patch (text/plain), 1.13 KB, created by
Andrew Bartlett
on 2013-04-30 20:42:43 UTC
(
hide
)
Description:
patches cherry-picked from master
Filename:
MIME Type:
Creator:
Andrew Bartlett
Created:
2013-04-30 20:42:43 UTC
Size:
1.13 KB
patch
obsolete
>From 04fd77087c2f1f4bbe82d13876ee40b2aaa6b69d Mon Sep 17 00:00:00 2001 >From: Andrew Bartlett <abartlet@samba.org> >Date: Fri, 15 Mar 2013 13:00:55 +1100 >Subject: [PATCH] auth/ntlmssp: Avoid use-after-free of user_info after logon > failure at log level 5 > >Reviewed-by: Jeremy Allison <jra@samba.org> >(cherry picked from commit 1dcd75df4941d7032a66d3fbb86ac76964444a3f) >--- > auth/ntlmssp/ntlmssp_server.c | 2 +- > 1 file changed, 1 insertion(+), 1 deletion(-) > >diff --git a/auth/ntlmssp/ntlmssp_server.c b/auth/ntlmssp/ntlmssp_server.c >index d9bea1c..442bd5d 100644 >--- a/auth/ntlmssp/ntlmssp_server.c >+++ b/auth/ntlmssp/ntlmssp_server.c >@@ -449,11 +449,11 @@ static NTSTATUS ntlmssp_server_check_password(struct gensec_security *gensec_sec > &gensec_ntlmssp->server_returned_info, > user_session_key, lm_session_key); > } >- talloc_free(user_info); > > if (!NT_STATUS_IS_OK(nt_status)) { > DEBUG(5, (__location__ ": Checking NTLMSSP password for %s\\%s failed: %s\n", user_info->client.domain_name, user_info->client.account_name, nt_errstr(nt_status))); > } >+ TALLOC_FREE(user_info); > > NT_STATUS_NOT_OK_RETURN(nt_status); > >-- >1.7.11.7 >
You cannot view the attachment while viewing its details because your browser does not support IFRAMEs.
View the attachment on a separate page
.
View Attachment As Raw
Flags:
metze
:
review+
Actions:
View
Attachments on
bug 9834
: 8842