I don't see anymore this bug in ubuntu 14.04.
I tried, in an up to date virtual machine running trusty and joined to an active directory domain, to change an expired password and I was able to do it correctly, either with the original lightdm package (lightdm 1.9.5-0ubuntu1) and either with a recompiled lightdm with PAM_CHANGE_EXPIRED_AUTHTOK in the pam_chauthtok().

auth.log

Jan 20 14:39:08 vmt-amb20 lightdm: pam_succeed_if(lightdm:auth): requirement "user ingroup nopasswdlogin" not met by user "domainuser1"
Jan 20 14:39:14 vmt-amb20 lightdm: pam_krb5(lightdm:auth): authentication failure; logname=domainuser1 uid=0 euid=0 tty=:0 ruser= rhost=
Jan 20 14:39:14 vmt-amb20 lightdm: pam_unix(lightdm:auth): authentication failure; logname= uid=0 euid=0 tty=:0 ruser= rhost=  user=domainuser1
Jan 20 14:39:14 vmt-amb20 lightdm: pam_winbind(lightdm:auth): getting password (0x00000388)
Jan 20 14:39:14 vmt-amb20 lightdm: pam_winbind(lightdm:auth): pam_get_item returned a password
Jan 20 14:39:14 vmt-amb20 lightdm: pam_winbind(lightdm:auth): request wbcLogonUser failed: WBC_ERR_AUTH_ERROR, PAM error: PAM_AUTH_ERR (7), NTSTATUS: NT_STATUS_LOGON_FAILURE, Error message was: Logon failure
Jan 20 14:39:14 vmt-amb20 lightdm: pam_winbind(lightdm:auth): user 'domainuser1' denied access (incorrect password or invalid membership)
Jan 20 14:39:25 vmt-amb20 lightdm: pam_succeed_if(lightdm:auth): requirement "user ingroup nopasswdlogin" not met by user "domainuser1"
Jan 20 14:39:45 vmt-amb20 lightdm: pam_krb5(lightdm:auth): user domainuser1 authenticated as <email address hidden>
Jan 20 14:39:46 vmt-amb20 lightdm: pam_unix(lightdm-greeter:session): session closed for user lightdm
Jan 20 14:39:46 vmt-amb20 lightdm: pam_unix(lightdm:session): session opened for user domainuser1 by (uid=0)
Jan 20 14:39:46 vmt-amb20 systemd-logind[524]: New session c6 of user domainuser1.

lightdm.log

[+52.51s] DEBUG: Session: Setting XDG_VTNR=7
[+52.52s] DEBUG: Session pid=2962: Started with service 'lightdm', username '(null)'
[+52.52s] DEBUG: Session pid=2960: Terminated with signal 15
[+52.52s] DEBUG: Session: Failed during authentication
[+52.52s] DEBUG: Seat: Session stopped
[+52.54s] DEBUG: Session pid=2962: Got 1 message(s) from PAM
[+52.54s] DEBUG: Session pid=2887: Prompt greeter with 1 message(s)
[+212.49s] DEBUG: Session pid=2887: Continue authentication
[+212.50s] DEBUG: Session pid=2962: Got 1 message(s) from PAM
[+212.50s] DEBUG: Session pid=2887: Prompt greeter with 1 message(s)
[+218.44s] DEBUG: Session pid=2887: Continue authentication
[+220.74s] DEBUG: Session pid=2962: Authentication complete with return value 7: Authentication failure
[+220.74s] DEBUG: Session pid=2887: Authenticate result for user domainuser1: Authentication failure
[+220.75s] DEBUG: Session pid=2962: Exited with return value 1
[+220.75s] DEBUG: Seat: Session stopped
[+220.75s] DEBUG: Session pid=2887: Greeter start authentication
[+220.75s] CRITICAL: Source ID 42 was not found when attempting to remove it
[+220.75s] DEBUG: Seat: Setting XDG_SEAT=seat0
[+220.75s] DEBUG: Session: Setting XDG_VTNR=7
[+220.75s] DEBUG: Session pid=4122: Started with service 'lightdm', username '(null)'
[+220.77s] DEBUG: Session pid=4122: Got 1 message(s) from PAM
[+220.77s] DEBUG: Session pid=2887: Prompt greeter with 1 message(s)
[+229.94s] DEBUG: Session pid=2887: Continue authentication
[+229.96s] DEBUG: Session pid=4122: Got 1 message(s) from PAM
[+229.96s] DEBUG: Session pid=2887: Prompt greeter with 1 message(s)
[+235.51s] DEBUG: Session pid=2887: Continue authentication
[+235.60s] DEBUG: Session pid=4122: Got 3 message(s) from PAM
[+235.60s] DEBUG: Session pid=2887: Prompt greeter with 3 message(s)
[+249.42s] DEBUG: Session pid=2887: Continue authentication
[+249.81s] DEBUG: Session pid=4122: Authentication complete with return value 0: Success
[+249.81s] DEBUG: Session pid=2887: Authenticate result for user domainuser1: Success
[+249.93s] DEBUG: Session pid=2887: User domainuser1 authorized
[+249.94s] DEBUG: Session pid=2887: Greeter requests default session
[+250.13s] DEBUG: Writing /home/DOMAIN1/domainuser1/.dmrc
[+250.13s] DEBUG: Seat: Stopping greeter; display server will be re-used for user session
[+250.13s] DEBUG: Session pid=2887: Sending SIGTERM
[+250.18s] DEBUG: Session pid=2887: Exited with return value 0
[+250.18s] DEBUG: Seat: Session stopped
[+250.18s] DEBUG: Seat: Greeter stopped, running session
[+250.18s] DEBUG: Registering session with bus path /org/freedesktop/DisplayManager/Session1
[+250.19s] DEBUG: Session pid=4122: Setting XDG_VTNR=7
[+250.19s] DEBUG: Session pid=4122: Running command /usr/sbin/lightdm-session gnome-session --session=ubuntu
[+250.19s] DEBUG: Session pid=4122: Logging to .xsession-errors
[+250.27s] DEBUG: Activating VT 7