]> CyberLeo.Net >> Repos - FreeBSD/stable/10.git/commit
projects / FreeBSD / stable / 10.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 10dfff2) | patch
MF11 r331330: Fix kernel memory disclosure in svr4_sys_getdents64
authoremaste <emaste@ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f>
Thu, 29 Mar 2018 22:31:14 +0000 (22:31 +0000)
committeremaste <emaste@ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f>
Thu, 29 Mar 2018 22:31:14 +0000 (22:31 +0000)
commit38c36d9914a1b043adebcc1eac9c25bcc422771c
treea0dc5cf38a5621864517789dad95349828422433tree | snapshot
parent10dfff2064d0d63561683e44cbc832fb98becb89commit | diff
MF11 r331330: Fix kernel memory disclosure in svr4_sys_getdents64

svr4_sys_getdents64() copies a dirent structure to userland.  When
calculating the record length for any given dirent entry alignment is
performed.  However, the aligned bytes are not cleared, this will
trigger an info leak.

Reported by: Ilja Van Sprundel <ivansprundel@ioactive.com>
Security: Kernel memory disclosure (801)
Sponsored by: The FreeBSD Foundation

git-svn-id: svn://svn.freebsd.org/base/stable/10@331749 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f
sys/compat/svr4/svr4_misc.c diff | blob | history
10-STABLE