The branch, v3-6-test has been updated
via 445f314 s3: Fix uninitialized memory read in talloc_free()
from ec7a5f2 Forward port of Richard Sharpe's
<[email protected]> fix for bug #8970 - Possible memory leaks in the
samba master process.
http://gitweb.samba.org/?p=samba.git;a=shortlog;h=v3-6-test
- Log -----------------------------------------------------------------
commit 445f314614e4e514a70ff5f1fbbfedb4d3ab0aac
Author: Volker Lendecke <[email protected]>
Date: Tue May 29 15:31:49 2012 +0200
s3: Fix uninitialized memory read in talloc_free()
Thanks to laurent gaffie <[email protected]> for reporting
this issue!
-----------------------------------------------------------------------
Summary of changes:
source3/libsmb/clispnego.c | 3 +++
1 files changed, 3 insertions(+), 0 deletions(-)
Changeset truncated at 500 lines:
diff --git a/source3/libsmb/clispnego.c b/source3/libsmb/clispnego.c
index 4581ce4..0a907ba 100644
--- a/source3/libsmb/clispnego.c
+++ b/source3/libsmb/clispnego.c
@@ -127,6 +127,9 @@ bool spnego_parse_negTokenInit(TALLOC_CTX *ctx,
asn1_start_tag(data,ASN1_SEQUENCE(0));
for (i=0; asn1_tag_remaining(data) > 0 && i < ASN1_MAX_OIDS-1; i++) {
asn1_read_OID(data,ctx, &OIDs[i]);
+ if (data->has_error) {
+ break;
+ }
}
OIDs[i] = NULL;
asn1_end_tag(data);
--
Samba Shared Repository
