Possible crash in winbind daemon
Jeremy Allison
jra at samba.org
Thu May 6 17:16:46 GMT 2004
On Thu, May 06, 2004 at 07:55:31PM +0900, kawasa_r at itg.hitachi.co.jp wrote:
> Winbindd get SIGILL and abnormally terminated when a communication to the domain controller
> is failed by "Connection reset by peer".
>
> In cli_session_setup_ntlmssp(), blob.free() (pointer to function) is executed.
> Since blob.free() is a member of uninitialized DATA_BLOB struct blob, so smbd tried to
> jump to an uncertain area.
> In case of failure in communicating the domain controller, this struct member is
> referred without any initialization.
>
> We made a following patch that initialize the struct in its declaration.
Correct - applied, thanks.
Jeremy
More information about the samba-technical
mailing list