]> CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit
projects / FreeBSD / FreeBSD.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 23d5e74) | patch
MFS r341147
authorvangyzen <vangyzen@FreeBSD.org>
Wed, 28 Nov 2018 16:58:35 +0000 (16:58 +0000)
committervangyzen <vangyzen@FreeBSD.org>
Wed, 28 Nov 2018 16:58:35 +0000 (16:58 +0000)
commit07164c5ea842cc957698c9a31265ea76051bda79
treebf7223154ce1ed59df107f4dc2a61cb03cf6dc6btree | snapshot
parent23d5e74935e1cba21811e511f7a7ed2bd59205c5commit | diff
MFS r341147

MFC r340995

Prevent kernel stack disclosure in signal delivery

On arm64 and riscv platforms, sendsig() failed to zero the signal
frame before copying it out to userspace.  Zero it.

On arm, I believe all the contents of the frame were initialized,
so there was no disclosure.  However, explicitly zero the whole frame
because that fact could inadvertently change in the future,
it's more clear to the reader, and I could be wrong in the first place.

Approved by: re (gjb)
Security: similar to FreeBSD-EN-18:12.mem and CVE-2018-17155
Sponsored by: Dell EMC Isilon
sys/arm/arm/machdep.c diff | blob | history
sys/arm64/arm64/machdep.c diff | blob | history
sys/riscv/riscv/machdep.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.