From fdfa166654efbcd95c72ac672ae3d00c6cc59df3 Mon Sep 17 00:00:00 2001
From: Tomas Mraz <tmraz@fedoraproject.org>
Date: Nov 10 2010 16:15:18 +0000
Subject: - fix segfault in faillock utility

- remove some cases where the information of existence of
  an user account could be leaked by the pam_faillock,
  document the remaining case

---

diff --git a/pam-1.1.3-faillock-screensaver.patch b/pam-1.1.3-faillock-screensaver.patch
index ce34835..249d285 100644
--- a/pam-1.1.3-faillock-screensaver.patch
+++ b/pam-1.1.3-faillock-screensaver.patch
@@ -17,11 +17,13 @@ diff -up Linux-PAM-1.1.3/modules/pam_faillock/faillock.c.screensaver Linux-PAM-1
  {
  	char *path;
  	int flags = O_RDWR;
-@@ -69,8 +70,16 @@ open_tally (const char *dir, const char 
+@@ -69,8 +70,18 @@ open_tally (const char *dir, const char 
  
  	fd = open(path, flags, 0600);
  
 -	if (fd != -1)
++	free(path);
++
 +	if (fd != -1) {
 +		struct stat st;
 +
diff --git a/pam.spec b/pam.spec
index 41fac6e..14db32c 100644
--- a/pam.spec
+++ b/pam.spec
@@ -3,7 +3,7 @@
 Summary: An extensible library which provides authentication for applications
 Name: pam
 Version: 1.1.3
-Release: 3%{?dist}
+Release: 4%{?dist}
 # The library is BSD licensed with option to relicense as GPLv2+ - this option is redundant
 # as the BSD license allows that anyway. pam_timestamp and pam_console modules are GPLv2+,
 License: BSD and GPLv2+
@@ -345,6 +345,9 @@ fi
 %doc doc/adg/*.txt doc/adg/html
 
 %changelog
+* Wed Nov 10 2010 Tomas Mraz <tmraz@redhat.com> 1.1.3-4
+- fix memory leak in pam_faillock
+
 * Wed Nov 10 2010 Tomas Mraz <tmraz@redhat.com> 1.1.3-3
 - fix segfault in faillock utility
 - remove some cases where the information of existence of