auth: Make sure that creds_out is initialized with NULL.

This is an additional patch for CVE-2015-0240. BUG: https://bugzilla.samba.org/show_bug.cgi?id=11077#c32 Pair-Programmed-With: Michael Adam <obnox@samba.org> Pair-Programmed-With: Andreas Schneider <asn@samba.org> Signed-off-by: Michael Adam <obnox@samba.org> Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Volker Lendecke <vl@samba.org>
author: Andreas Schneider <asn@samba.org> 2015-02-16 10:56:03 +0100
committer: Karolin Seeger <kseeger@samba.org> 2015-02-22 15:02:26 +0100
commit: a470a8ae13abca48e5887fac463430cc78bccfea (patch)
tree: c45a340cc8eea836dc25e5b39b6dd31f4c3265aa
parent: 3504106c94153a87c5c8e1c0e49f1fff924b0f4d (diff)
download: samba-a470a8ae13abca48e5887fac463430cc78bccfea.tar.gz
1 files changed, 4 insertions, 0 deletions
diff --git a/libcli/auth/schannel_state_tdb.c b/libcli/auth/schannel_state_tdb.c
index ca35a11abe0..145005c3a8d 100644
--- a/libcli/auth/schannel_state_tdb.c
+++ b/libcli/auth/schannel_state_tdb.c
@@ -285,6 +285,10 @@ NTSTATUS schannel_check_creds_state(TALLOC_CTX *mem_ctx,
 	NTSTATUS status;
 	int ret;
 
+	if (creds_out != NULL) {
+		*creds_out = NULL;
+	}
+
 	tmpctx = talloc_named(mem_ctx, 0, "schannel_check_creds_state");
 	if (!tmpctx) {
 		return NT_STATUS_NO_MEMORY;
author	Andreas Schneider <asn@samba.org>	2015-02-16 10:56:03 +0100
committer	Karolin Seeger <kseeger@samba.org>	2015-02-22 15:02:26 +0100
commit	a470a8ae13abca48e5887fac463430cc78bccfea (patch)
tree	c45a340cc8eea836dc25e5b39b6dd31f4c3265aa
parent	3504106c94153a87c5c8e1c0e49f1fff924b0f4d (diff)
download	samba-a470a8ae13abca48e5887fac463430cc78bccfea.tar.gz