sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-02-28 01:58:17 +03:00
Code

CVE-2021-20251 s4:auth_winbind: Check return status of authsam_logon_success_accounting()

Browse Source 
This may return an error if we find the account is locked out.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14611

Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Reviewed-by: Andreas Schneider <asn@samba.org>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
(cherry picked from commit 268ea7bef5af4b9c8a02f4f5856113ff0664d9e8)
This commit is contained in:
Joseph Sutton 2022-07-04 20:51:38 +12:00 committed by Jule Anger
parent 96c24b58b8
commit 05447dfb20
1 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
source4/auth/ntlm/auth_winbind.c
View File

@ -252,11 +252,14 @@ static void winbind_check_password_done(struct tevent_req *subreq)
status = authsam_search_account(state, ctx->auth_ctx->sam_ctx,
nt4_account, domain_dn, &msg);
if (NT_STATUS_IS_OK(status)) {
authsam_logon_success_accounting(
status = authsam_logon_success_accounting(
ctx->auth_ctx->sam_ctx, msg,
domain_dn,
user_info->flags & USER_INFO_INTERACTIVE_LOGON,
NULL);
if (tevent_req_nterror(req, status)) {
return;
}
}
}