CVE-2013-4496:s3:auth: fix memory leak in the ACCOUNT_LOCKED_OUT case.

Bug: https://bugzilla.samba.org/show_bug.cgi?id=10245 Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Jeremy Allison <jra@samba.org> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
author: Stefan Metzmacher <metze@samba.org> 2013-11-05 14:04:20 +0100
committer: Karolin Seeger <kseeger@samba.org> 2014-03-11 11:17:26 +0100
commit: 88c9f6820bafc74a93487e5d7d4b24768bd157a6 (patch)
tree: 1f64465dc735d91f652056cbfec4e18996cec73f
parent: 87ad66195e9035f1e5fbca7c4ccc4458f10aa875 (diff)
download: samba-88c9f6820bafc74a93487e5d7d4b24768bd157a6.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/source3/auth/check_samsec.c b/source3/auth/check_samsec.c
index f918dc0db19..e2c42d6dc47 100644
--- a/source3/auth/check_samsec.c
+++ b/source3/auth/check_samsec.c
@@ -408,6 +408,7 @@ NTSTATUS check_sam_security(const DATA_BLOB *challenge,
 	/* Quit if the account was locked out. */
 	if (pdb_get_acct_ctrl(sampass) & ACB_AUTOLOCK) {
 		DEBUG(3,("check_sam_security: Account for user %s was locked out.\n", username));
+		TALLOC_FREE(sampass);
 		return NT_STATUS_ACCOUNT_LOCKED_OUT;
 	}
author	Stefan Metzmacher <metze@samba.org>	2013-11-05 14:04:20 +0100
committer	Karolin Seeger <kseeger@samba.org>	2014-03-11 11:17:26 +0100
commit	88c9f6820bafc74a93487e5d7d4b24768bd157a6 (patch)
tree	1f64465dc735d91f652056cbfec4e18996cec73f
parent	87ad66195e9035f1e5fbca7c4ccc4458f10aa875 (diff)
download	samba-88c9f6820bafc74a93487e5d7d4b24768bd157a6.tar.gz